Use of this script creates unwanted SQL Injection vulnerabilities due to improper parsing of malicious input.
SQL Injections can be used to obtain unauthorized access within a domain, database, and/or website. They are often used to corrupt databases and execute malicious javascripts for the sole purpose of infecting other end users who might then be in a position to infect other backend users.