SQL injection vulnerability in the search script in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote attackers to execute arbitrary SQL commands via the uri parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/26658
https://exchange.xforce.ibmcloud.com/vulnerabilities/26653
http://www.vupen.com/english/advisories/2006/1973
http://www.vupen.com/english/advisories/2006/1972
http://www.securityfocus.com/archive/1/434912/100/0/threaded
http://securityreason.com/securityalert/955