Subrion CMS 4.0.5.10 has SQL injection in admin/database/ via the query parameter.
intelliants subrion cms 4.0.5.10