Lixiaobailrl

**Name of the Vulnerable Software and Affected Versions** Online Music Site version 1.0 **Description** An issue exists in the processing of the '/Frontend/Search.php' endpoint. Manipulation of the `Category` argument allows for SQL injection, which is a technique used to execute malicious SQL statements that control a database server. This attack can be initiated remotely. **Recommendations** Update Online Music Site version 1.0 to a newer version that contains a fix. As a temporary workaround, restrict access to the '/Frontend/Search.php' endpoint or avoid using the `Category` parameter until the issue is resolved.