CVE-2026-7002

HIGH NVD

CVSS Score 7.3

Severity HIGH

Published Apr 25, 2026

Vendor unknown

Description

A vulnerability was determined in KLiK SocialMediaWebsite up to 1.0.1. This vulnerability affects unknown code of the file /includes/get_message_ajax.php of the component Private Message Handler. Executing a manipulation of the argument c_id can lead to sql injection. It is possible to launch the attack remotely.

References

https://vuldb.com/submit/797302
https://vuldb.com/vuln/359561
https://vuldb.com/vuln/359561/cti