A SQL injection vulnerability in "/tunes/ajax.php?action=find_music" in Kashipara songs administration program v1.0 makes it possible for an attacker to execute arbitrary SQL instructions by way of the "research" https://www.ralantech.com/mysql-database-health-check-consulting-service/