CVE-2026-7266 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=save_order ID sql injection

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0 and classified as critical. The impacted element is the function save_order of the file /admin/ajax.php?action=save_order. The manipulation of the argument ID results in sql injection.

This vulnerability is identified as CVE-2026-7266. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More