CVE-2026-10694

EUVD-2026-34059
A vulnerability was detected in SourceCodester Online Food Ordering System 2.0. Affected by this issue is the function include of the file /index.php. The manipulation of the argument page results in file inclusion. The attack can be launched remotely. The exploit is now public and may be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Common Weakness Enumeration
References
https://github.com/Mikkoseven/cve/issues/4
https://vuldb.com/cve/CVE-2026-10694
https://vuldb.com/submit/830903
https://vuldb.com/vuln/367963
https://vuldb.com/vuln/367963/cti
https://www.sourcecodester.com/