CVE-2026-0852 | code-projects Online Music Site 1.0 AdminUpdateUser.php ID sql injection

A vulnerability categorized as critical has been discovered in code-projects Online Music Site 1.0. The impacted element is an unknown function of the file /Administrator/PHP/AdminUpdateUser.php. The manipulation of the argument ID results in sql injection.

This vulnerability is identified as CVE-2026-0852. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More