IBM Sterling Partner Engagement Manager is an automated management tool from International Business Machines (IBM). IBM Sterling Partner Engagement Manager suffers from a SQL injection vulnerability that stems from the application’s lack of validation of externally entered SQL statements, which can be exploited by an attacker to execute illegal SQL commands to obtain sensitive database data.