cpe:/a:xrms:xrms_crm:1.99.2 CVE-2008-3948 2008-09-05T12:08:00.000-04:00 2017-08-07T21:32:17.420-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-09-05T13:39:00.000-04:00 BUGTRAQ 20080904 Multiple Cross Site Scripting (XSS) and SQL injection Vulnerabilities in XRMS, CVE-2008-3664 BID 31008 SREASON 4229 XF xrms-self2-sql-injection(45048) SQL injection vulnerability in admin/users/self-2.php in XRMS allows remote attackers to execute arbitrary SQL commands and modify name and email fields via unspecified vectors.