Yacht Listing Script version 2.0 suffers from a remote SQL injection vulnerability.