Vulnerabilities

CVE-2026-7294

by Fred · 28/04/2026

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function save_settings of the file /admin/index.php?page=save_settings. This manipulation of the argument Name causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used.

More information : https://github.com/joaodrmmd/VulDB-Reports/blob/main/XSS%20-%20Config.pdf

Similar

Tags: Cybersecurity Alert