A vulnerability labeled as critical has been found in itsourcecode Online Frozen Foods Ordering System 1.0 . This affects an unknown part of the file /admin/admin_edit_employee.php . Executing a manipulation of the argument First_Name can lead to sql injection. This vulnerability is registered as CVE-2026-4471 . It is possible to launch the attack remotely. Furthermore, an exploit is available.