Submit #802840: Code-projects ONLINE MUSIC SITE v1.0 Arbitrary file upload vulnerabilityinfo

TitleCode-projects ONLINE MUSIC SITE v1.0 Arbitrary file upload vulnerability
DescriptionA Arbitrary file upload vulnerability vulnerability was identified within the " AdminUpdateAlbum.php" file of the "ONLINE MUSIC SITE" project. The root cause is that attackers can bypass file type detection via "Content-Type" and "Content-Disposition". Then upload malicious Trojan files. As a result, attackers can upload malicious scripts and execute them to directly control servers, steal data, or launch subsequent attacks that seriously threaten system security. In order to safeguard system security and maintain data integrity and confidentiality, corrective action must be taken immediately.
Source⚠️ https://github.com/gtxy114514/CVE/issues/4
User
 the_better_you (UID 94054)
Submission04/11/2026 13:24 (3 months ago)
Moderation04/27/2026 19:19 (16 days later)
StatusAccepted
VulDB entry359846 [code-projects Online Music Site 1.0 AdminUpdateAlbum.php txtimage unrestricted upload]
Points20

Do you know our Splunk app?

Download it now for free!