Fast Food Ordering System, a fast food ordering system from Carlo Montero's personal developer, is vulnerable to a SQL injection vulnerability in version 1.0 of Fast Food Ordering System, which originates in /ffos/admin/categories/view_category. php?id=The page lacks validation for external input SQL statements, which could be exploited to execute illegal SQL commands to steal sensitive database data.