SQL injection vulnerability in events.php in iScripts SocialWare allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show action.
iscripts socialware