D-Link DAR-7000 is an Internet Behavior Audit Gateway from China AUO (D-Link). A SQL injection vulnerability exists in the D-Link DAR-7000 importexport.php file. An attacker can exploit this vulnerability to execute illegal SQL commands to steal sensitive database data.