Multiple SQL injection vulnerabilities in VHCS 2.4 and earlier allow remote attackers to execute arbitrary SQL commands via certain inputs from HTTP POST queries.Referenceshttp://securitytracker.com/id?1013703http://www.osvdb.org/15541
