cpe:/a:runcms:runcms CVE-2008-1462 2008-03-24T17:44:00.000-04:00 2017-09-28T21:30:44.050-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-03-25T09:59:00.000-04:00 ALLOWS_OTHER_ACCESS BID 28378 EXPLOIT-DB 5285 XF section-index-sql-injection(41377) SQL injection vulnerability in the sections (Section) module in RunCMS allows remote attackers to execute arbitrary SQL commands via the artid parameter in a viewarticle action.