SQL injection vulnerability in feedback_js.php in DedeCMS 5.1 allows remote attackers to execute arbitrary SQL commands via the arcurl parameter.Referenceshttp://www.securityfocus.com/archive/1/507109/100/0/threaded
