cpe:/a:youtube_blog:youtube_blog:0.1 CVE-2008-3306 2008-07-25T12:41:00.000-04:00 2017-08-07T21:31:45.733-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-28T08:53:00.000-04:00 ALLOWS_OTHER_ACCESS SECUNIA 31161 XF youtubeblog-info-sql-injection(44151) SQL injection vulnerability in info.php in C. Desseno YouTube Blog (ytb) 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.