cpe:/a:aprox:aprox_cms_engine:5.1.0.4 cpe:/a:aprox:aproxengine:5.1.0.4 CVE-2008-3291 2008-07-24T14:41:00.000-04:00 2017-09-28T21:31:37.320-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-25T10:59:00.000-04:00 BID 30295 SREASON 4032 EXPLOIT-DB 6098 XF aproxcmsengine-index-sql-injection(43905) MISC http://www.aprox.de/index.php?id=001 SQL injection vulnerability in index.php in AproxEngine (aka Aprox CMS Engine) 5.1.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.