SQL injection vulnerability in show.php in VBZooM Forum allows remote malicious users to execute arbitrary SQL commands via the SubjectID parameter.
vbzoom vbzoom 1.11