cpe:/a:orbitscripts:smartppc cpe:/a:orbitscripts:smartppc_pro CVE-2008-3152 2008-07-11T18:41:00.000-04:00 2017-09-28T21:31:33.273-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-14T12:56:00.000-04:00 BID 30111 EXPLOIT-DB 6014 EXPLOIT-DB 6019 VUPEN ADV-2008-2013 XF smartppc-directory-sql-injection(43597) SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter.