SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the makale_id parameter.
aspindir xweblog 2.2