CVE-2026-14693
MEDIUM
NVD
CVSS Score
5.4
Severity
MEDIUM
Published
Jul 05, 2026
Vendor
unknown
Description
A flaw has been found in SourceCodester Multi-Vendor Online Grocery Management System 1.0. Affected by this vulnerability is the function cancel_order of the file classes/Master.php. Executing a manipulation can lead to improper authorization. The attack may be performed from remote. The exploit has been published and may be used.