SQL injection vulnerability in cat.php in W2B phpHotResources allows remote attackers to execute arbitrary SQL commands via the kind parameter.Referenceshttp://www.osvdb.org/44378http://forum.aria-security.com/showthread.php?p=70http://secunia.com/advisories/29825http://marc.info/?l=bugtraq&m=120792465631586&w=2http://www.securityfocus.com/bid/28736https://exchange.xforce.ibmcloud.com/vulnerabilities/41793
