SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/49653
http://www.securityfocus.com/bid/34350
http://www.securityfocus.com/archive/1/502360/100/0/threaded