Today our security software detected and stopped several attacks aiming on getting root privileges on server 10. through SPAW php scripts.
SPAW Editor PHP Edition v 1.x are affected.
To fix it please setup the latest version from here
Also YABB is also have several critical holes discovered.
YaBB SE Version(s): 1.5.4, 1.5.5, 1.5.5b, and probably other versions are vulnurable to SQL ingetions
Unofficial patch can be downloaded here