SQL injection vulnerability in book/detail.php in Virtue Netz Virtue Book Store allows remote attackers to execute arbitrary SQL commands via the bid parameter.Referenceshttp://securityreason.com/securityalert/8460http://packetstormsecurity.org/0908-exploits/vbs-sql.txthttp://secunia.com/advisories/35375http://www.securityfocus.com/bid/43275
