CVE-2026-4470
MEDIUM
adonesevangelista
NVD
CVSS Score
4.7
Severity
MEDIUM
Published
Mar 20, 2026
Vendor
adonesevangelista
Description
A security flaw has been discovered in itsourcecode Online Frozen Foods Ordering System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin_edit_menu.php. Performing a manipulation of the argument product_name results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks.