eek

1 exploit Active since Feb 2009
CVE-2008-6260 EXPLOITDB text WRITEUP
Ultrastats 0.2.144 and 0.3.11 - SQL Injection via serverid Parameter
SQL injection vulnerability in index.php in Ultrastats 0.2.144 and 0.3.11 allows remote attackers to execute arbitrary SQL commands via the serverid parameter.