SQL injection vulnerability in question.asp in PORAR WEBBOARD allows remote malicious users to execute arbitrary SQL commands via the QID parameter.
porar webboard