SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/62957
http://www.securityfocus.com/bid/44619