Tungbx

**Name of the Vulnerable Software and Affected Versions** Interspire Email Marketer versions 6.5.1 and earlier **Description** The issue allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists. **Recommendations** For Interspire Email Marketer versions 6.5.1 and earlier, consider disabling the surveys module until a patch is available to prevent SQL Injection attacks. Restrict access to the surveys module to minimize the risk of exploitation. Avoid using the surveys module if the survey id exists, until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.