CVE-2026-7228 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=get_cart_count ID sql injection

A vulnerability classified as critical has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function get_cart_count of the file /admin/ajax.php?action=get_cart_count. This manipulation of the argument ID causes sql injection.

This vulnerability is tracked as CVE-2026-7228. The attack is possible to be carried out remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More