A SQL injection vulnerability in "/music/ajax.php?action=login" of Kashipara Music Management System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email parameter.
https://www.kashipara.com/project/php/12978/music-management-system-in-php-php-project-source-code