SQL injection vulnerability in tops_top.php in Million Pixel Ad Script (Million Pixel Script) allows remote attackers to execute arbitrary SQL commands via the id_cat parameter.Referenceshttp://packetstorm.linuxsecurity.com/0808-exploits/millionpixel-sql.txthttp://secunia.com/advisories/31626
