SQL injection vulnerability in kommentar.php in pGB 2.12 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
powie pgb 2.12
powie pgb 2.14