SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the emp_id parameter.Referenceshttp://packetstorm.linuxsecurity.com/0907-exploits/jobbr-sql.txthttp://secunia.com/advisories/35722
