Thru Managed File Transfer Portal version 9.0.2 suffers from a remote SQL injection vulnerability.