SQL injection vulnerability in admin.php in CCleague Pro 1.2 allows remote malicious users to execute arbitrary SQL commands via the u parameter.
castillocentral ccleague 1.2