x5music V2.0 Member Center Injection Vulnerability

x5music Free Edition is an audio-visual management system developed using php+Mysql. x5music V2.0 Free Edition has an injection vulnerability in the member center. As X5music uses a global escape filter, nickname characters are taken out of the database and not processed, resulting in data that c...