The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to module/admin_group/search.php.
eyesofnetwork eyesofnetwork 5.1-0