A vulnerability categorized as critical has been discovered in code-projects Online Music Site 1.0. Affected is an unknown function of the file /Administrator/PHP/AdminDeleteCategory.php. Executing a manipulation of the argument ID can lead to sql injection.
This vulnerability is handled as CVE-2026-2211. The attack can be executed remotely. Additionally, an exploit exists.
