minidlna has SQL Injection that may allow retrieval of arbitrary files
CVE-2013-2738 (Candidate) is related to these bugs: