For YSE PRE 6 but Also working for BoLaMns PRE 7
Open rss.php and substitute:
Replace This:
Code:
$user = mysql_fetch_row(sql_query("SELECT COUNT(*) FROM users WHERE passkey = '$passkey'"));
With this:
Code:
$user = mysql_fetch_row(sql_query("SELECT COUNT(*) FROM users WHERE passkey = ".sqlesc($passkey)));
Vulnerability type SQL-injection, but because of the complexity of the application - rather than dangerous.