cpe:/a:mx-system:mxbb_portal:2.7.3 CVE-2008-2477 2008-05-28T11:32:00.000-04:00 2017-09-28T21:31:11.117-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-28T13:01:00.000-04:00 ALLOWS_OTHER_ACCESS BID 29307 SECUNIA 30318 EXPLOIT-DB 5659 VUPEN ADV-2008-1593 XF mxsystem-index-sql-injection(42551) SQL injection vulnerability in index.php in MxBB (aka MX-System) Portal 2.7.3 allows remote attackers to execute arbitrary SQL commands via the page parameter.