CVE-2026-4469

MEDIUM adonesevangelista NVD

CVSS Score 4.7

Severity MEDIUM

Published Mar 20, 2026

Vendor adonesevangelista

Description

A vulnerability was identified in itsourcecode Online Frozen Foods Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/admin_edit_menu_action.php. Such manipulation of the argument product_name leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.

References

https://github.com/sjkdhl/public/issues/4
https://itsourcecode.com/
https://vuldb.com/?ctiid.351759
https://vuldb.com/?id.351759
https://vuldb.com/?submit.772881