A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the โcddocumentโ parameter in the โDownloading Electronic Documentsโ section.