SQL injection vulnerability in vuBB 0.2 allows remote malicious users to execute arbitrary SQL commands via the pass parameter in a cookie.
vubb vubb 0.2