2017-10-24 08:29:00 2017-11-14 16:10:57

In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.