A SQL injection vulnerability exists where an authenticated, low-privileged remote attacker could potentially alter scan DB content.
tenable nessus