CVE-2026-7293 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=delete_category ID sql injection

A vulnerability described as critical has been identified in SourceCodester Pizzafy Ecommerce System 1.0. Affected is the function delete_category of the file /admin/ajax.php?action=delete_category. The manipulation of the argument ID results in sql injection.

This vulnerability is reported as CVE-2026-7293. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More