High severity7.3NVD Advisory· Published May 31, 2026· Updated Jun 1, 2026
CVE-2026-10178
CVE-2026-10178
Description
A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminEditAlbum.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.0
Patches
Vulnerability mechanics
References
6News mentions
2- Code-Projects: Eight SQLi CVEs Across Five Apps Disclosed With Public ExploitsVypr Intelligence · Jun 1, 2026
- Code-Projects Batch: Four SQLi Bugs Across Three Products Disclosed TogetherVypr Intelligence · May 31, 2026