Online Food Delivery version 2.04 suffers from a remote SQL injection vulnerability that allows for authentication bypass.