CVE-2026-7238 in Online Music Siteinformación

Resumen

por MITRE • 2026-04-28

A flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. This manipulation of the argument txtimage causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been published and may be used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-04-28

Moderación

aceptado

Artículo

VDB-359846

CPE

listo

CWE

CWE-434 (confirmado)

Explotación

Descargar

CVSS

4.7 (VulDB)

EPSS

0.00050

KEV

Actividades

muy bajo

Sector

Hospital, Industry, ...

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7238
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7238
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7238/

◂ Anterior Visión De Conjunto Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!