How severe is CVE-2026-0851?

CVE-2026-0851 has a CVSS v3 score of 7.3 (HIGH).

CVE-2026-0851

Name: online_music_site
Author: fabian

7.3HIGH

A vulnerability was identified in code-projects Online Music Site 1.0. The affected element is an unknown function of the file /Administrator/PHP/AdminAddUser.php. The manipulation of the argument txt

Published: 1/12/2026Updated: 1/14/2026

Description

A vulnerability was identified in code-projects Online Music Site 1.0. The affected element is an unknown function of the file /Administrator/PHP/AdminAddUser.php. The manipulation of the argument txtusername leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

AI AnalysisPowered by AI

Affected Products

fabianonline_music_site

1.0

References

https://code-projects.org/
Product
https://github.com/tuo159515/sql-injection/issues/2
ExploitIssue Tracking
https://vuldb.com/?ctiid.340446
Permissions RequiredVDB Entry
https://vuldb.com/?id.340446
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.733644
Third Party AdvisoryVDB Entry