Sites “Powered by INVEM” suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data.