A SQL injection vulnerability in "/tunes/ajax.php?motion=find_music" in Kashipara Music administration technique v1.0 permits an attacker to execute arbitrary SQL instructions through the "research" parameter. in https://www.ralantech.com/mysql-database-health-check-consulting-service/