Secunia Security Advisory – Some vulnerabilities have been discovered in Science Fair In A Box, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90507/sa40170.txt
Source: https://packetstormsecurity.com/files/90507/Secunia-Security-Advisory-40170.html