SQL Injection Time-based Attack in PHP Melody 2.7.1 via ajax.php (playlist parameter)

SQL Injection Time-based Attack in PHP Melody 2.7.1 via ajax.php (playlist parameter)

CVE-2018-5211 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHP Melody version 2.7.1 suffer from SQL Injection Time-based attack on the page ajax.php with the parameter playlist.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.