SQL injection vulnerability in the LTree converter in Pomm before 1.1.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
https://github.com/chanmix51/Pomm/issues/122
https://exchange.xforce.ibmcloud.com/vulnerabilities/91276
http://www.securityfocus.com/bid/65711