SQL injection vulnerability in tr.php in DownlineGoldmine Special Category Addon, Downline Builder Pro, New Addon, and Downline Goldmine Builder allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
packetstorm.linuxsecurity.com/0809-exploits/categoryaddon-sql.txt
packetstorm.linuxsecurity.com/0809-exploits/downline-sql.txt
packetstormsecurity.org/0809-exploits/newdownline-sql.txt
secunia.com/advisories/31812
www.securityfocus.com/bid/31169
www.vupen.com/english/advisories/2008/2992
www.vupen.com/english/advisories/2008/2993
www.vupen.com/english/advisories/2008/2994
www.vupen.com/english/advisories/2008/2995
exchange.xforce.ibmcloud.com/vulnerabilities/45128
www.exploit-db.com/exploits/6946
www.exploit-db.com/exploits/6947
www.exploit-db.com/exploits/6950
www.exploit-db.com/exploits/6951