CVE-2026-0607 | code-projects Online Music Site 1.0 AdminViewSongs.php ID sql injection

Inserito da Angelo Barbosa | Gen 5, 2026 | CVE

A vulnerability categorized as critical has been discovered in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminViewSongs.php. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability is registered as CVE-2026-0607. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-0607 | code-projects Online Music Site 1.0 AdminViewSongs.php ID sql injection

Post correlati

CVE-2024-8135 | Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310 pkg/token/token.go Sign config.key hard-coded credentials

CVE-2025-13359 | Tag, Category, and Taxonomy Manager Plugin up to 3.40.1 on WordPress sql injection

CVE-2025-11386 | Tenda AC15 15.03.05.18 POST Parameter /goform/SetDDNSCfg ddnsEn stack-based overflow

CVE-2024-22905 | ARM Mbed OS 6.17.0 hciTrSerialRxIncoming buffer overflow