SQL injection vulnerability in group_posts.php in ClipShare prior to 3.0.1 allows remote malicious users to execute arbitrary SQL commands via the tid parameter.
clip-share clipshare