A SQL injection vulnerability in "/audio/ajax.php?motion=find_music" in Kashipara Music Management procedure v1.0 permits an attacker to execute arbitrary SQL commands by way of the "research" parameter. Swissphone https://www.ralantech.com/mysql-database-health-check-consulting-service/