The Sourcefire Defense Center(R) versions prior 4.10.2.3 were found to be vulnerable to arbitrary file download, deletion of files in a specific directory, persistent cross site scripting, and database access using default credentials in some circumstances.
a9d7e313e24a1fb445e3a80c7afeab9310471eba9fc7f977406b4e4c4934ed50