CVE-2026-10559NVD

Description

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to file inclusion. The attack may be performed from remote. The exploit has been published and may be used.

Severity Level

MEDIUM (6.3)

Published Date

02/06/2026

Last Modified

02/06/2026

Exploitation Status

????

References

https://vuldb.com/vuln/367649
https://vuldb.com/vuln/367649/cti
https://vuldb.com/cve/CVE-2026-10559
https://vuldb.com/submit/828822
https://github.com/cyber-bhaskar10/CVE-Writeups/blob/main/CVE%20Writeup%20LFI%20via%20Null%20Byte%20Injection%20in%20index.php.md
https://www.sourcecodester.com/

Critical Alert 2 Active Exploits Detected Today

CVE Watchtower

CVE-2026-10559NVD

Description

References