SQL injection vulnerability in index.php in RadScripts RadBids Gold 4 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a view_forum action, a different vector than CVE-2005-1074.Referenceshttp://secunia.com/advisories/35827http://www.exploit-db.com/exploits/9194
