{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-4844/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["sql-injection","web-application","cve-2026-4844"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eA SQL injection vulnerability, identified as CVE-2026-4844, affects the code-projects Online Food Ordering System version 1.0. Specifically, the vulnerability resides within the Admin Login Module and is triggered by manipulating the Username argument when processing the \u003ccode\u003e/admin.php\u003c/code\u003e file. This allows a remote attacker to inject arbitrary SQL commands. Public exploits are available, increasing the risk of exploitation. Successful exploitation can lead to unauthorized access to the database…\u003c/p\u003e\n","date_modified":"2026-03-26T05:16:41Z","date_published":"2026-03-26T05:16:41Z","id":"/briefs/2026-03-online-food-ordering-sqli/","summary":"CVE-2026-4844 describes a SQL injection vulnerability in the Admin Login Module of code-projects Online Food Ordering System 1.0, which can be exploited remotely by manipulating the Username argument in the /admin.php file.","title":"code-projects Online Food Ordering System SQL Injection Vulnerability (CVE-2026-4844)","url":"https://feed.craftedsignal.io/briefs/2026-03-online-food-ordering-sqli/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-4844","version":"https://jsonfeed.org/version/1.1"}