Sqlite Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2008-6593
SQL injection vulnerability in LightNEasy/lightneasy.php in LightNEasy SQLite 1.2.2 and earlier allows remote attackers to inject arbitrary PHP code into comments.dat via the dlid parameter to index.php.