CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save.Referenceshttps://github.com/chshcms/cscms/issues/17#issue-1207624107
