CVE-2026-4970 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file delete_photos.php of the component…
Medium CVSS: 5.3

CVE-2026-4970

A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file delete_photos.php of the component Endpoint. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.
Vendor
-
Product
-
CWE
CWE-74
Yayın Tarihi
2026-03-27 19:16:44
Güncelleme
2026-03-30 13:26:29
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 MEDIUM 2026

Referanslar

https://code-projects.org/ https://github.com/ahmadmarz10-hub/CVEsMarz/blob/main/SQL%20Injection%20in%20Social%20Networking%20Site%20v1.0%20delete_photos.php.md https://vuldb.com/?ctiid.353857 https://vuldb.com/?id.353857 https://vuldb.com/?submit.777870