CVE Catalog

CVE-2026-9364

High
Published: Translated: NVD NIST

Summary

A flaw has been found in projectworlds Online Art Gallery Shop 1.0 affecting an unknown function of the file /admin/adminHome.php. Manipulating the argument social_linked can lead to SQL injection.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to the security of data within the system.

Recommendation

It is recommended to update to the latest version of the software and to monitor logs for potential attack attempts.

Original NVD description (English source)

A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is an unknown function of the file /admin/adminHome.php. Executing a manipulation of the argument social_linked can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS