SQL injection vulnerability in the login page in phphelpdesk 0.6.16 allows remote attackers to execute arbitrary SQL commands via unspecified parameters related to the "login procedures."
https://exchange.xforce.ibmcloud.com/vulnerabilities/38260
http://www.securityfocus.com/bid/26319
http://www.securityfocus.com/archive/1/483256/100/0/threaded