LOW
Codeastro
CVE published 2026-05-10
CVE-2026-8231
CVE-2026-8231 describes a SQL injection issue affecting CodeAstro Online Catering Ordering System 1.0, specifically an unknown function in /deleteorder.php where the ID parameter can be manipulated. The source record says the attack can be carried out remotely and that the exploit has been publicly disclosed. Although the CVSS score is low, exposed deployments should still be reviewed quickly because the [truncated]