[原文]SQL injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows remote attackers to execute arbitrary SQL commands via the (1) sortdir or (2) criteria parameter to ladder-log.asp or the (3) memberid or (4) teamid parameter to view-profile.asp.
PD9 Software contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "sortdir" & "criteria" variables in the "ladder-log.asp" module are not verified properly and will allow an attacker to inject or manipulate SQL queries.
Currently, there are no known workarounds or upgrades to correct this issue. However, PD9 Software has released a patch to address this vulnerability.