SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL statements via the fid parameter.Referenceshttp://www.securityfocus.com/bid/14684http://marc.info/?l=bugtraq&m=112535137320050&w=2
