SQL injection vulnerability in index.php in AudiStat 1.3 allows remote malicious users to execute arbitrary SQL commands via the mday parameter.
alexandre dubus audistat 1.3