SQL injection vulnerability in news.php in AZNEWS allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
aznews aznews 1.0