Secunia Security Advisory – A weakness and some vulnerabilities have been discovered in evalSMSI, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct SQL injection, cross-site scripting attacks, and disclose sensitive information.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/86038/sa38478.txt
Source: https://packetstormsecurity.com/files/86038/Secunia-Security-Advisory-38478.html