CVE-2026-10704 | SourceCodester Pizzafy E-Commerce System 1.0 Administrative Control Panel admin_class_novo.php login Username sql injection

Inserito da Angelo Barbosa | Giu 2, 2026 | CVE

A vulnerability described as critical has been identified in SourceCodester Pizzafy E-Commerce System 1.0. Affected by this vulnerability is the function Login of the file /admin/admin_class_novo.php of the component Administrative Control Panel. The manipulation of the argument Username results in sql injection.

This vulnerability is identified as CVE-2026-10704. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-10704 | SourceCodester Pizzafy E-Commerce System 1.0 Administrative Control Panel admin_class_novo.php login Username sql injection

Post correlati

CVE-2023-48426 | Google Chromecast 5.0 U-Boot Remote Code Execution

CVE-2026-39711 | stmcan RT-Theme 18 Plugin up to 2.5 on WordPress insertion of sensitive information into sent data

CVE-2024-10431 | Codezips Pet Shop Management System 1.0 /deletebird.php t1 sql injection

CVE-2024-20271 | Cisco Aironet Access Point IPv4 Packet denial of service (cisco-sa-ap-dos-h9TGGX6W)