A vulnerability identified as critical has been detected in itsourcecode Online Frozen Foods Ordering System 1.0 . Affected by this issue is some unknown functionality of the file /admin/admin_edit_menu.php . Performing a manipulation of the argument product_name results in sql injection. This vulnerability is cataloged as CVE-2026-4470 . It is possible to initiate the attack remotely. Furthermore, there is an exploit available.