A SQL injection vulnerability exists in Subrion CMS v4.2.1 in the visual-mode.
intelliants subrion cms 4.2.1