SQL injection vulnerability in language.php in VBZooM 1.01 allows remote malicious users to execute arbitrary SQL commands via the Action parameter.
vbzoom vbzoom 1.01