CVE Catalog

CVE-2026-11490

HighCVSS 7.3
Published: Updated: Translated: NVD NIST

Summary

A vulnerability was identified in code-projects Online Music Site 1.0 affecting unknown processing of the file /Frontend/Search.php. Manipulation of the argument Category leads to SQL injection.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to data security within the system.

Recommendation

It is recommended to update to the latest version of the software and implement input data filtering to prevent SQL injection.

Original NVD description (English source)

A vulnerability was determined in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Frontend/Search.php. This manipulation of the argument Category causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS