CVE-2014-9435
CVE-2014-9435 has concrete details in connected documents: Absolut Engine 1.73 contains multiple SQL injection vulnerabilities allowing remote authenticated users to execute arbitrary SQL via (1) sectionID in admin/managersection.php, (2) userID in admin/edituser.php, (3) username in admin/admin....