Invision Community Blog EID Parameter SQL Injection Vulnerability

Invision Community Blog EID Parameter SQL Injection Vulnerability

An exploit is not required.

The following proof of concept example is available:
http://www.example.com/forum/index.php?automodule=blog&blogid=14&cmd=showentry&eid=4%20injectionhere