SQL injection vulnerability in autor.php in OwnRS CMS 1.2 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
adam tomecek ownrs 1.2