CVE-2026-7297 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=save_user Name cross site scripting

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability, which was classified as problematic, was found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation of the argument Name can lead to cross site scripting.

This vulnerability is handled as CVE-2026-7297. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-7297 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=save_user Name cross site scripting

Post correlati

CVE-2024-25371 | Gramine Signal

CVE-2024-33629 | Creative Motion Auto Featured Image Plugin up to 4.0.0 on WordPress server-side request forgery

CVE-2023-26585 | Intel Thunderbolt DCH Drivers on Windows denial of service (intel-sa-00851)

CVE-2025-7884 | Eluktronics Control Center 5.23.51.41 REG File data authenticity