Sweet

**Name of the Vulnerable Software and Affected Versions** Seagull versions 0.6.7 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `frmQuestion` parameter in a retrieve action, in conjunction with a user/password PATH INFO. **Recommendations** For Seagull versions 0.6.7 and earlier, consider restricting access to the `index.php` file until a patch is available. As a temporary workaround, avoid using the `frmQuestion` parameter in the affected retrieve action to minimize the risk of exploitation.