SQL injection vulnerability in SocketKB 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) node and (2) art_id parameters.
https://exchange.xforce.ibmcloud.com/vulnerabilities/23308
http://www.vupen.com/english/advisories/2005/2640