SQL injection vulnerability in login.php in Allomani Audio & Video Library (Songs & Clips version) 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action.
CPE | Name | Operator | Version |
---|---|---|---|
audio_\\&_video_library | eq | 2.7.0 |