SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote malicious users to execute arbitrary SQL commands via the music_id parameter.
bpowerhouse bpmusic 1.0