SQL injection vulnerability in category.php in PHP123 Top Sites allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
php123 top sites