CVE-2026-7228

Published
View on NVD ↗
CVSS v3
7.3
HIGH
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function get_cart_count of the file /admin/ajax.php?action=get_cart_count. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used.

fernando-mengali/vulndb-submissions
fernando-mengali/vulndb-submissions
Repository containing security vulnerability reports submitted to VulnDB. A structured repository of vulnerability reports submitted to VulnDB, including detailed technical analysis, proof-of-concept (PoC), and reproducible steps to validate each issue
GitHubGitHub