CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/vod/admin/topic/del.Referenceshttps://github.com/chshcms/cscms/issues/36#issue-1209060196
