CVE-2022-29667
CVE-2022-29667 affects CSCMS Music Portal System v4.2 and involves a SQL injection vulnerability in the path /admin.php/pic/admin/pic/hy, exploitable by restoring deleted photos. Root cause: lack of input validation on the id parameter leading to SQL command execution. Impact is reported as data ...