cpe:/a:social_engine:social_engine:1.0 cpe:/a:social_engine:social_engine:1.1 cpe:/a:social_engine:social_engine:1.4 cpe:/a:social_engine:social_engine:1.6 cpe:/a:social_engine:social_engine:1.7 cpe:/a:social_engine:social_engine:1.8 cpe:/a:social_engine:social_engine:2.0 cpe:/a:social_engine:social_engine:2.0:online_beta cpe:/a:social_engine:social_engine:2.1 cpe:/a:social_engine:social_engine:2.4::se cpe:/a:social_engine:social_engine:2.5 cpe:/a:social_engine:social_engine:2.7 cpe:/a:social_engine:social_engine:2.81 CVE-2008-3297 2008-07-25T09:41:00.000-04:00 2017-08-07T21:31:45.217-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-25T13:26:00.000-04:00 BUGTRAQ 20080722 Vulnerability: SocialEngine (SocialEngine.net) high risk security flaw BID 30342 SECUNIA 31203 SREASON 4035 CONFIRM http://www.socialengine.net/news.php XF socialengine-cookie-sql-injection(43958) Multiple SQL injection vulnerabilities in SocialEngine (SE) before 2.83 allow remote attackers to execute arbitrary SQL commands via (1) an se_user cookie to include/class_user.php or (2) an se_admin cookie to include/class_admin.php.