SQL injection vulnerability in eDNews_view.php in eDreamers eDNews 2 allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
edreamers ednews 2.0