cpe:/a:acgv.free:acgv_news:0.9.1 CVE-2008-2412 2008-05-22T09:09:00.000-04:00 2017-08-07T21:31:01.543-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-22T14:16:00.000-04:00 ALLOWS_OTHER_ACCESS BID 29253 XF acgvnews-glossaire-sql-injection(42490) MISC http://www.z0rlu.ownspace.org/index.php?/archives/84-ACGV-News-v0.9.1-2003-SQL-inj.-XSS.html SQL injection vulnerability in glossaire.php in ACGV News 0.9.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.