A moderately critical flaw was found in Akiva WebBoard. The vulnerability can be used to launch SQL injection attack. Data passed via „name“ parameter in /WB/Default.asp (when „loginform“ is set to „yes“) are not properly sanitised before being used in SQL queries. It allows attacker to manipulate queries.
The flaw was found in versions prior to 8 SR 1 so users should upgrade to 8 SR 1.

Source: Secunia
02.01.2012