JFrog Artifactory before 7.25.4 (Enterprise+ deployments only), is vulnerable to Blind SQL Injection by a low privileged authenticated user due to incomplete validation when performing an SQL query.
http://packetstormsecurity.com/files/177162/JFrog-Artifactory-SQL-Injection.html