This is a nonexistent vulnerability. The unsanitized variable
referenced is only used in the Javascript on the page and is never
passed back for processing by the PHP code, much less in any SQL
statement. Furthermore, the page that this summary references is only
accessible by users who have...

[ more ]