cpe:/a:webchamado:webchamado:1.1 CVE-2008-2907 2008-06-30T14:24:00.000-04:00 2017-09-28T21:31:24.130-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-06-30T15:20:00.000-04:00 ALLOWS_OTHER_ACCESS BID 29701 SECUNIA 30690 EXPLOIT-DB 5798 XF webchamado-index-sql-injection(43060) SQL injection vulnerability in admin/index.php in WebChamado 1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the eml parameter.