Medium severity4.7NVD Advisory· Published May 31, 2026· Updated Jun 1, 2026
CVE-2026-10171
CVE-2026-10171
Description
A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 1.0
Patches
Vulnerability mechanics
References
5News mentions
2- Code-Projects: Eight SQLi CVEs Across Five Apps Disclosed With Public ExploitsVypr Intelligence · Jun 1, 2026
- Code-Projects Batch: Four SQLi Bugs Across Three Products Disclosed TogetherVypr Intelligence · May 31, 2026