CVE-2026-7410 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=add_to_cart pid sql injection

Inserito da Angelo Barbosa | Apr 29, 2026 | CVE

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. It has been rated as critical. This vulnerability affects unknown code of the file /admin/ajax.php?action=add_to_cart. The manipulation of the argument pid leads to sql injection.

This vulnerability is listed as CVE-2026-7410. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-7410 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=add_to_cart pid sql injection

Post correlati

CVE-2024-0641 | Linux Kernel up to 6.6-rc4 net/tipc/crypto.c tipc_crypto_key_revoke deadlock

CVE-2024-52975 | Elastic Fleet Server up to 8.14.x information disclosure

CVE-2025-43367 | Apple macOS up to 14.7 App information disclosure

CVE-2026-2071 | UTT 进取 520W 1.7.7-180627 formP2PLimitConfig strcpy except buffer overflow