Hot off milw0rm...
SQL injection:
http://www.milw0rm.com/exploits/5486
Plugin was updated yesterday..
http://timrohrer.com/blog/?page_id=71
if the plugin author comes along and read this, you might want to fix the year typo that exists on the page:
version 0.62 (release date 24 April 07)
