CVE-2026-7264 | SourceCodester Pizzafy Ecommerce System 1.0 ajax.php?action=get_cart_items ID sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is the function get_cart_items of the file /admin/ajax.php?action=get_cart_items. Executing a manipulation of the argument ID can lead to sql injection.

The identification of this vulnerability is CVE-2026-7264. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More