CVE-2026-0607
7.3HIGHA flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminViewSongs.php. Executing a manipulation of the argument ID can lead to sq
Veröffentlicht: 1/6/2026Aktualisiert: 1/12/2026
Beschreibung
A flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminViewSongs.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be used.
KI-AnalyseKI-gestützt
Betroffene Produkte
fabianonline_music_site
1.0
Referenzen
- https://code-projects.org/Product
- https://github.com/xkalami-Tta0/CVE/blob/main/Online%20Music%20Site/SQL%E6%B3%A8%E5%85%A53.mdExploitThird Party Advisory
- https://github.com/xkalami-Tta0/CVE/blob/main/Online%20Music%20Site/SQL%E6%B3%A8%E5%85%A53.md#vulnerability-details-and-pocExploitThird Party Advisory
- https://vuldb.com/?ctiid.339551Permissions RequiredVDB Entry
- https://vuldb.com/?id.339551Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.731697Third Party AdvisoryVDB Entry
- https://github.com/xkalami-Tta0/CVE/blob/main/Online%20Music%20Site/SQL%E6%B3%A8%E5%85%A53.mdExploitThird Party Advisory
- https://github.com/xkalami-Tta0/CVE/blob/main/Online%20Music%20Site/SQL%E6%B3%A8%E5%85%A53.md#vulnerability-details-and-pocExploitThird Party Advisory