CVE-2026-10170 | code-projects Visitor Management System 1.0 /vms/php/phone_0.php phone sql injection

A vulnerability was found in code-projects Visitor Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /vms/php/phone_0.php. This manipulation of the argument phone causes sql injection.

This vulnerability appears as CVE-2026-10170. The attack may be initiated remotely. In addition, an exploit is available.VulDB Recent EntriesRead More