H3Llfyr3

**Name of the Vulnerable Software and Affected Versions** 4images versions 1.7.x **Description** The issue allows remote authenticated users to execute arbitrary SQL commands via the `search user` parameter in the "search.php" file. **Recommendations** For 4images versions 1.7.x, avoid using the `search user` parameter in the affected API endpoint until the issue is resolved. Restrict access to the "search.php" file to minimize the risk of exploitation.