Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
2.1
CVE-2026-10559: SourceCodester Pizzafy Ecommerce System 1.0 File Inclusion Risk
CVE-2026-10559
Summary
An unknown function in the SourceCodester Pizzafy Ecommerce System 1.0 allows attackers to include unauthorized files, potentially leading to sensitive information exposure or malicious code execution. This issue can be exploited remotely. Users are advised to update the system to a patched version or seek assistance from the vendor to address this vulnerability.
Original title
A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to f...
Original description
A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to file inclusion. The attack may be performed from remote. The exploit has been published and may be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
6.3
nvd CVSS4.0
2.1
Vulnerability type
CWE-73
Published: 2 Jun 2026 · Updated: 2 Jun 2026 · First seen: 2 Jun 2026