Secunia Security Advisory – Multiple vulnerabilities have been discovered in Sandbox, which can be exploited by malicious users to disclose sensitive information and upload arbitrary files and by malicious people to conduct SQL injection attacks and bypass security restrictions.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/91569/sa40447.txt
Source: https://packetstormsecurity.com/files/91569/Secunia-Security-Advisory-40447.html