ГлавнаяУязвимости → CVE-2026-0851
7.3высокая

CVE-2026-0851

Описание

A vulnerability was identified in code-projects Online Music Site 1.0. The affected element is an unknown function of the file /Administrator/PHP/AdminAddUser.php. The manipulation of the argument txtusername leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Затрагиваемое ПО
Fabian Online music site
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/tuo159515/sql-injection/issues/2https://vuldb.com/?ctiid.340446https://vuldb.com/?id.340446https://vuldb.com/?submit.733644