SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
https://www.exploit-db.com/exploits/7224
https://exchange.xforce.ibmcloud.com/vulnerabilities/46833
http://securityreason.com/securityalert/4664