CVE-2026-4970 in code-projects Social Networking Siteinformação

Sumário (Inglês)

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file delete_photos.php of the component Endpoint. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

Divulgação

27/03/2026

Inscrições

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidade	CWE	Exp	Con	CVE
353857	code-projects Social Networking Site Endpoint delete_photos.php Injeção SQL	89	Prova de conceito	Não definido	CVE-2026-4970

Descrição

CPE

CWE

CVSS

Explorações

História

Diferença

Relacionar

Inteligência de ameaças

API JSON

API XML

API CSV

◂ VoltarVisão GeralPróximo ▸

Want to know what is going to be exploited?

We predict KEV entries!