Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component news_News.php_hy.
chshcms cscms 4.2