SQL injection vulnerability in Creative Commons Tools ccHost before 3.0 allows remote attackers to execute arbitrary SQL commands via a crafted URL, which is used to populate the file ID. NOTE: Some details are obtained from third party information.Referenceshttp://www.securityfocus.com/bid/19978http://sourceforge.net/project/shownotes.php?release_id=445818&group_id=80503http://secunia.com/advisories/21822http://www.vupen.com/english/advisories/2006/3567
