Sql injection

Multiple SQL injection vulnerabilities in XMB Forums 1.9.3 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 $u2uselect array parameter to u2u.inc.php and 2 $val variable fidpw0 cookie value in today.php...