SQL injection vulnerability in permalink.php in Desi Quintans Writer's Block CMS 3.8a allows remote attackers to execute arbitrary SQL commands via the PostID parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/41619
http://www.securityfocus.com/bid/28564
http://www.securityfocus.com/archive/1/490376/100/0/threaded