GHSA-w392-mcrm-ggqmMediumCVSS 7.3

A security flaw has been discovered in SourceCodester Pizzafy E-Commerce System 1.0. This...

Published
July 5, 2026
Last Modified
July 5, 2026

🔗 CVE IDs covered (1)

📋 Description

A security flaw has been discovered in SourceCodester Pizzafy E-Commerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=confirm_order. The manipulation of the argument ID results in sql injection. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.

🔗 References (8)