Multiple SQL injection vulnerabilities in Simpel Side Weblosning 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) mainid and (2) id parameters to index2.php.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2506)