SQL injection vulnerability in index.php in the MyAds 2.04jp and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter, different vectors than CVE-2006-3341.Referenceshttp://www.securityfocus.com/bid/23212https://www.exploit-db.com/exploits/3603http://osvdb.org/37372https://exchange.xforce.ibmcloud.com/vulnerabilities/33334
