CVE-2026-7393 in Pizzafy Ecommerce Systemالمعلومات

الملخص

بحسب MITRE • 29/04/2026

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. Affected is the function save_menu of the file /admin/admin_class_novo.php of the component File Extension Handler. Performing a manipulation of the argument img results in unrestricted upload. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

إفشاء

29/04/2026

الاعتدال

تمت الموافقة

إدخال

VDB-360118

CPE

جاهز

CWE

CWE-434 (مؤكد)

استغلال

تحميل

CVSS

4.7 (VulDB)

EPSS

0.00050

KEV

لا

النشاطات

منخفض جدًا

القطاع

Transportation, Telecommunication, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7393
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7393
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7393/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!