CVE-2026-30533: A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php

Description

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/manage_product.php file via the "id" parameter.

Vendor	Product	Versions
n/a	n/a	n/a

Tier C

VulDB6h ago

→ No new info (linked only)

CVSS 3.19.8 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Published3/27/2026

Last enriched6h agov2

Trending Score71

Source articles1

Independent1

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

0 upvotes0 downvotes

No votes yet

State: unverified

Confidence: 0%

Last enriched 6h ago

v2Tier C6h ago

Updated vendor and product information, changed severity to CRITICAL, and noted that the vulnerability is actively exploited.

descriptionseverityactivelyExploited

via VulDB

v17h ago

Initial creation