TaskFreak! versions 0.6.1 and below suffer form a remote SQL injection vulnerability.
0f2bf94ac5ade02c3b7e20cc700125a5f6b1fe6b3052a992f1113dacfca93825
Task Freak version 0.6.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c2e4cad3acc7ebac98343078acf155f038484525fd60cc340c10109c9c504e8f