Vulnerabilities

CVE-2026-3406 - projectworlds Online Art Gallery Shop Registration registration.php sql injection

2026-03-02 0 views admin

CVE ID : CVE-2026-3406 Published : March 2, 2026, 3:16 a.m. | 1 hour, 53 minutes ago Description : A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-3406

Severity

HIGH

Published

March 2, 2026

Affected Product: php

Impact: sql injection

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-3406highphp

CVE-2026-3406 - projectworlds Online Art Gallery Shop Registration registration.php sql injection

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-3411 - itsourcecode University Management System admin_single_student_update.php sql inj...

CVE-2026-2999 - Changing｜IDExpert Windows Logon Agent - Remote Code Execution

CVE-2026-3413 - itsourcecode University Management System admin_single_student.php sql injection

CVE-2026-3000 - Changing｜IDExpert Windows Logon Agent - Remote Code Execution

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting