diff -Nru acidbase-1.2-1/includes/base_db.inc.php acidbase-1.2/includes/base_db.inc.php
--- acidbase-1.2-1/includes/base_db.inc.php	2005-10-09 20:17:41.000000000 +0200
+++ acidbase-1.2/includes/base_db.inc.php	2005-10-30 09:35:46.000000000 +0100
@@ -194,9 +194,8 @@
         $sql = eregi_replace("''", "NULL", $sql);
      }
 
-    /* ** Begin optimization SQL fix-up ** */
-    //$sql = eregi_replace("acid_event.sid > 0 AND ", "", $sql);
-    //$sql = eregi_replace("WHERE  acid_event.sid > 0", "", $sql);  
+     // Fix for the SQL injection attack
+     $sql = eregi_replace(";", " [Possible SQL Injection Attack] ", $sql);
 
     /* ** End SQL fix-up ** */