Fast Food Ordering System, a fast food ordering system from Carlo Montero's personal developer, is vulnerable to a SQL injection vulnerability in version 1.0 of Fast Food Ordering System, which originates in /ffos/classes/Master.php?f=delete_ category page lacks validation of externally entered SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.