CVE-2001-1348
TWIG 2.6.2 and earlier allows remote attackers to perform unauthorized database operations via a SQL injection attack on the id parameter.
Date published : 2002-05-03
http://www.securityfocus.com/bid/2791
http://archives.neohapsis.com/archives/bugtraq/2001-05/0260.html