SQL injection vulnerability in index.php in Foojan WMS PHP Weblog 1.0 allows remote malicious users to execute arbitrary SQL commands via the story parameter.
foojan php weblog 1.0