SQL injection vulnerability in genre_artists.php in MusicBox 3.3 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
musicboxv2 musicbox 3.3