CVE-2026-1159 | itsourcecode Online Frozen Foods Ordering System 1.0 /order_online.php product_name sql injection

Inserito da Angelo Barbosa | Gen 18, 2026 | CVE

A vulnerability described as critical has been identified in itsourcecode Online Frozen Foods Ordering System 1.0. This issue affects some unknown processing of the file /order_online.php. Executing a manipulation of the argument product_name can lead to sql injection.

This vulnerability is tracked as CVE-2026-1159. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-1159 | itsourcecode Online Frozen Foods Ordering System 1.0 /order_online.php product_name sql injection

Post correlati

CVE-2025-6692 | YouTube Embed Plugin up to 10.3 on WordPress Instance cross site scripting

CVE-2024-8232 | iniNet Solutions SpiderControl SCADA Web Server up to 2.09 File unrestricted upload (icsa-24-254-02)

CVE-2024-50255 | Linux Kernel up to 6.1.115/6.6.59/6.11.6 __hci_cmd_sync_sk null pointer dereference

CVE-2025-48309 | web-able BetPress Plugin up to 1.0.1 Lite on WordPress cross-site request forgery