CVE-2026-7224 in Pizzafy Ecommerce Systeminfo

Zusammenfassung

von MITRE • 28.04.2026

A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function delete_cart of the file /admin/ajax.php?action=delete_cart. Performing a manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

28.04.2026

Moderieren

akzeptiert

Eintrag

VDB-359824

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00043

KEV

nein

Aktivitäten

very low

Sektor

Telecommunication, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7224
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7224
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7224/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!