CVE-2006-3332
SQL injection vulnerability in index.php in Zorum Forum 3.5 allows remote attackers to execute arbitrary SQL commands via the (1) offset, (2) tid, (3) fromid, (4) sortby, (5) fromfrommethod, and (6) fromfromlist parameters.
Date published : 2006-06-30
http://www.securityfocus.com/bid/18681
http://pridels0.blogspot.com/2006/06/zorum-forum-35-vuln.html