SQL injection vulnerability in content/forums/reply.asp in ASPPortal allows remote attackers to execute arbitrary SQL commands via the Topic_Id parameter.
https://www.exploit-db.com/exploits/5775
https://exchange.xforce.ibmcloud.com/vulnerabilities/42977
http://www.securityfocus.com/archive/1/493302/100/0/threaded