Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
paid to read script project paid to read script 2.0.5