SQL injection vulnerability in /app in Sendy 1.1.8.4 allows remote attackers to execute arbitrary SQL commands via the i parameter.Referenceshttp://www.exploit-db.com/exploits/31898
