cpe:/a:bcoos:bcoos:1.0.10 CVE-2007-6080 2007-11-21T17:46:00.000-05:00 2017-09-28T21:29:47.533-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-11-23T10:20:00.000-05:00 BID 26505 BID 31941 EXPLOIT-DB 4637 VUPEN ADV-2007-3962 XF bcoos-bid-sql-injection(46156) XF bcoos-click-sql-injection(38594) MISC http://www.securityfocus.com/bid/31941/exploit SQL injection vulnerability in modules/banners/click.php in the banners module for bcoos 1.0.10 allows remote attackers to execute arbitrary SQL commands via the bid parameter. NOTE: it was later reported that 1.0.13 is also affected.