SQL injection vulnerability in the Chatspot 2.0.0a7 module for phpBB allows remote attackers to execute arbitrary SQL commands via unknown vectors.
http://www.vupen.com/english/advisories/2005/3048
http://sourceforge.net/project/shownotes.php?release_id=379608