Multiple SQL injection vulnerabilities in index.php in CMS WebManager-Pro allow remote attackers to execute arbitrary SQL commands via the (1) lang_id and (2) menu_id parameters.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2351)