Blazer is a tool. Allows SQL queries to be executed against a database from a Web panel.A SQL injection vulnerability exists in versions of Blazer prior to 2.6.0, which stems from the application’s lack of validation of externally entered SQL statements. An attacker could exploit this vulnerability to allow users to run queries that they would not normally run. If the data source has write access, this could include modifying the data in some cases.