SQL injection vulnerability in index.php in RSStatic allows remote attackers to execute arbitrary SQL commands via the maxarticles parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/56781
http://www.securityfocus.com/bid/38623
http://www.exploit-db.com/exploits/11665
http://packetstormsecurity.org/1003-exploits/rsstatic-sql.txt