A vulnerability classified as critical was found in SourceCodester Computer Repair Shop Management System up to 1.0 . Affected is an unknown function of the file /admin/products/manage_product.php . The manipulation of the argument ID results in sql injection. This vulnerability is reported as CVE-2026-10263 . The attack can be launched remotely. Moreover, an exploit is present.