CVE-2008-2685
SQL injection vulnerability in article.asp in Battle Blog 1.25 Build 4 and earlier allows remote attackers to execute arbitrary SQL commands via the entry parameter, a different vector than CVE-2008-2626.
Date published : 2008-06-12
http://www.davethewebguy.com/battleblog/article.asp?entry=24