Multiple SQL injection vulnerabilities in Bugtracker.NET 2.0.1 allow remote malicious users to execute arbitrary SQL commands via unknown vectors.