CVE-2026-10171 | code-projects Online Music Site 1.0 AdminUpdateAlbum.php ID sql injection

Inserito da Angelo Barbosa | Mag 30, 2026 | CVE

A vulnerability categorized as critical has been discovered in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to sql injection.

This vulnerability is traded as CVE-2026-10171. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-10171 | code-projects Online Music Site 1.0 AdminUpdateAlbum.php ID sql injection

Post correlati

CVE-2026-48840 | Exim up to 4.99.3 Proxy Configuration numeric range comparison without minimum check

CVE-2025-68971 | Forgejo up to 13.0.3 File Attachment denial of service

CVE-2023-6901 | codelyfe Stupid Simple CMS up to 1.2.3 HTTP POST Request handle-command.php command os command injection

CVE-2025-6106 | WuKongOpenSource WukongCRM 9.0 AdminRoleController.java cross-site request forgery