SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php.Referenceshttp://www.sstrunk.com/cve/phpCollab_newsdesk.html
