SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/65550
http://www.securityfocus.com/bid/46465
http://www.securityfocus.com/archive/1/516562/100/0/threaded
http://securityreason.com/securityalert/8102
http://packetstormsecurity.org/files/view/98573/wsnguest124-sql.txt