CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.8CVSS5.5AI score0.00253EPSS

CVE-2026-7408

A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this issue is the function savemenu of the file /admin/ajax.php?action=savemenu. Performing a manipulation results in sql injection. The attack can be initiated remotely. The exploit is now public and may be...

6.5CVSS6.4AI score0.002EPSS

CVE-2026-7268

A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This impacts the function savecategory of the file /admin/ajax.php?action=savecategory. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote. The exploit has been...

RedhatCVE•added 2026/06/05 7:50 p.m.•6 views

CVE-2026-7265

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function Category of the file pizza/index.php?page=category. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploi...

6.5CVSS6.4AI score0.00241EPSS

4.8CVSS3.9AI score0.00202EPSS

CVE-2026-7296

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function saveorder of the file /admin/ajax.php?action=saveorder. Performing a manipulation of the argument firstname results in cross site scripting. Remote exploitation of the attack is possible. The explo...

4.8CVSS3.8AI score0.00206EPSS

CVE-2026-7294

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function savesettings of the file /admin/index.php?page=savesettings. This manipulation of the argument Name causes cross site scripting. The attack may be initiated remotely. The exploit h...

RedhatCVE•added 2026/06/05 7:48 p.m.•8 views

CVE-2026-10558

A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is an unknown function of the file /admin/index.php. Performing a manipulation of the argument page results in file inclusion. The attack is possible to be carried out remotely. The exploit is now public and may...

6.5CVSS6.3AI score0.00227EPSS

RedhatCVE•added 2026/06/05 7:43 p.m.•6 views

CVE-2026-8117

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. This issue affects some unknown processing of the file /admin/index.php. Such manipulation of the argument page leads to cross site scripting. The attack may be launched remotely. The exploit has been...

5.3CVSS3.8AI score0.00269EPSS

RedhatCVE•added 2026/06/05 7:34 p.m.•9 views

CVE-2026-10704

A vulnerability was detected in SourceCodester Pizzafy E-Commerce System 1.0. Affected by this vulnerability is the function Login of the file /admin/adminclassnovo.php of the component Administrative Control Panel. The manipulation of the argument Username results in sql injection. The attack ca...

7.5CVSS7AI score0.00281EPSS

NVD•added 2026/06/03 2:16 a.m.•9 views

CVE-2026-10704

7.5CVSS0.00281EPSS

CVE•added 2026/06/02 1:15 a.m.•17 views

CVE-2026-10559

CVE-2026-10559 affects SourceCodester Pizzafy Ecommerce System 1.0. The flaw is a file inclusion vulnerability in an unknown function of /index.php triggered by manipulation of the page argument, exploitable remotely . The exploit has been published. Per the sources, CVSS metrics indicate a MEDIU...

6.5CVSS6.3AI score0.00227EPSS

Cvelist•added 2026/06/02 1:15 a.m.•38 views

CVE-2026-10559 SourceCodester Pizzafy Ecommerce System index.php file inclusion

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to file inclusion. The attack may be performed from remote. The exploit has been published and may be us...

6.5CVSS0.00227EPSS

ATTACKERKB•added 2026/06/02 1:0 a.m.•10 views

CVE-2026-10558

6.5CVSS6.4AI score0.00227EPSS

Exploits0References6Affected Software1

CNNVD•added 2026/06/02 12:0 a.m.•6 views

SourceCodester Pizzafy Ecommerce System 安全漏洞

SourceCodester Pizzafy Ecommerce System is an open-source e-commerce system developed by SourceCodester. Version 1.0 of the SourceCodester Pizzafy Ecommerce System contains a security vulnerability, which stems from the handling of the 'page' parameter in the file/index.php, potentially leading t...

6.5CVSS5.3AI score0.00227EPSS

CNNVD•added 2026/06/02 12:0 a.m.•4 views

SourceCodester Pizzafy Ecommerce System 安全漏洞

6.5CVSS5.3AI score0.00227EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•12 views

PT-2026-45679

6.5CVSS6.4AI score0.00227EPSS

Exploits0References7

EUVD•added 2026/05/08 12:31 a.m.•10 views

EUVD-2026-28475

5.3CVSS4.2AI score0.00269EPSS

Positive Technologies•added 2026/05/07 12:0 a.m.•9 views

PT-2026-38602

Name of the Vulnerable Software and Affected Versions SourceCodester Pizzafy Ecommerce System version 1.0 Description An issue in the processing of the '/admin/index.php' endpoint allows for remote cross-site scripting XSS, a technique where malicious scripts are injected into trusted websites...

5.3CVSS5.5AI score0.00269EPSS

Exploits0References10

RedhatCVE•added 2026/05/04 8:21 p.m.•7 views

CVE-2026-7410

A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=addtocart. The manipulation of the argument pid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to...

6.5CVSS6.5AI score0.00192EPSS