members.php in Vikingboard 0.1.2 allows remote attackers to trigger a forced SQL error via an invalid s parameter, a different vector than CVE-2006-4709. NOTE: might only be an exposure if display_errors is enabled, but due to lack of details, even this is not clear.
https://exchange.xforce.ibmcloud.com/vulnerabilities/30386
http://www.securityfocus.com/bid/21196
http://www.securityfocus.com/archive/1/452018/100/200/threaded