I purchased a php calendar program (Calendar Express 2 by phplite) a few years ago & added a bunch of customization for my friend's website - www.theatrevermont.com.
About a year ago we started experiencing data loss (members, events etc). After a bit of searching, I found out that Calendar Express had injection vulnerabilities: [url removed, login to view]
it is no longer maintained & phplite also seems to be no more. I've looked into alternative solutions, but feel that fixing what we have would be far easier then trying to customize another program & re-train.
Please bid if you are sure you can help prevent any more SQL injection attacks on our site. Thanks!