CVE-2026-11489
HIGH NVDCVSS Score
7.3
Severity
HIGH
Source
NVD
Published
Jun 08, 2026
Description
A vulnerability was found in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminDeleteAlbum.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used.