CVE-2006-1754
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter.
Date published : 2006-04-12
http://www.securityfocus.com/bid/17476
http://www.securityfocus.com/archive/1/430671/100/0/threaded