SQL Injection Vulnerability in Simple Music Cloud Community System by SourceCodester
CVE-2026-37336

7.3HIGH

Key Information:

Vendor

SourceCodester
Status
Simple Music Cloud Community System
Vendor
CVE Published:
16 April 2026

What is CVE-2026-37336?

The Simple Music Cloud Community System version 1.0 is susceptible to SQL Injection vulnerabilities specifically within the /music/view_music.php file. Attackers can exploit this flaw to manipulate SQL queries, gaining unauthorized access to the database and potentially compromising sensitive information.

References

https://github.com/mt-0505/cve-report/blob/main/sourcecod...

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.