CVE-2008-3352
CVE-2008-3352 describes a SQL injection in Live Music Plus 1.1.0. The vulnerability occurs in index.php via the id parameter in a Singer action, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a base score of 7.5 (HIGH) with network attack vector and no authentica...