SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artist_id parameter in an addalbum action.
Software | From | Fixed in |
---|---|---|
rightinpoint / lyrics_engine | 3.0 | 3.0.x |