CVE-2026-7394 | SourceCodester Pizzafy Ecommerce System 1.0 GET Parameter /admin/view_order.php ID sql injection

A vulnerability labeled as critical has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/view_order.php of the component GET Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. This vulnerability appears as CVE-2026-7394. The attack may be performed from remote. In addition, an exploit is available.

Tekst info:

Gepubliceerd: 11:45 - 29 Apr 2026

vuldb.com

Full text URL: https://vuldb.com/vuln/360119
Textarea URL (deze pagina):
https://textarea.nl/nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOzwWx8vSNzQwMDS0BnlIJrQ==_2026-04-29
Bron: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publicatie datum: 11:45 - 29 Apr 2026}
Data laatste keer ververst op:
13:45 - 29 Apr 2026