CVE-2026-7238 in Online Music Siteinformação

Sumário

de MITRE • 28/04/2026

A flaw has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. This manipulation of the argument txtimage causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been published and may be used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Divulgação

28/04/2026

Moderação

aceite

Entrada

VDB-359846

CPE

pronto

CWE

CWE-434 (confirmado)

Exploração

Descarregar

CVSS

4.7 (VulDB)

EPSS

0.00050

KEV

não

Atividades

muito baixo

Sector

Energy, Transportation, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7238
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7238
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7238/

◂ Voltar Visão Geral Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!