A vulnerability marked as critical has been reported in itsourcecode Online Frozen Foods Ordering System 1.0 . This vulnerability affects unknown code of the file /admin/admin_edit_supplier.php . The manipulation of the argument Supplier_Name leads to sql injection. This vulnerability is documented as CVE-2026-4472 . The attack can be initiated remotely. Additionally, an exploit exists.