CVE-2014-5159
SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the ws_data parameter.
Date published : 2014-08-21
http://forums.alienvault.com/discussion/2559/security-advisory-multiple-vulnerabilities