Veröffentlicht am von ms-freelancer

CVE-2026-7410 – SourceCodester Pizzafy Ecommerce System ajax.php add_to_cart sql injection

CVE ID :CVE-2026-7410

Published : April 29, 2026, 10:16 p.m. | 2 hours, 1 minute ago

Description :A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=add_to_cart. The manipulation of the argument pid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…