CVE-2026-30533: A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php

Description

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php file via the "id" parameter.

Vendor	Product	Versions
n/a	n/a	n/a

Tier C

VulDB9h ago

→ No new info (linked only)

CVSS 3.19.8 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Published3/27/2026

Last enriched8h agov2

Trending Score70

Source articles1

Independent1

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

0 upvotes0 downvotes

No votes yet

State: unverified

Confidence: 0%

Last enriched 8h ago

v2Tier C8h ago

Updated vendor and product information, changed severity to CRITICAL, and noted that the vulnerability is actively exploited.

descriptionseverityactivelyExploited

via VulDB

v19h ago

Initial creation