CVE-2014-1204

Tableau Server 8.0.x before 8.0.7 and 8.1.x before 8.1.2 are affected by an SQL injection vulnerability in the backend that can allow remote execution of arbitrary SQL commands. The issue is exploitable by remote authenticated users and, if the guest account is enabled, unauthenticated access may...