CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.Referenceshttps://github.com/chshcms/cscms/issues/24#issue-1207646618
