Esac

**Name of the Vulnerable Software and Affected Versions** GeoAuctions Premier version 2.0.3 GeoClassifieds Basic version 2.0.3 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `b` parameter in the index.php file. **Recommendations** For GeoAuctions Premier version 2.0.3, restrict access to the `b` parameter in the index.php file to minimize the risk of exploitation. For GeoClassifieds Basic version 2.0.3, avoid using the `b` parameter in the index.php file until the issue is resolved.