cpe:/a:memht:memht_portal:4.0.1 CVE-2008-5132 2008-11-18T06:30:02.327-05:00 2017-09-28T21:32:29.213-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-11-18T15:15:00.000-05:00 BID 32294 SECUNIA 32632 SREASON 4608 OSVDB 49903 EXPLOIT-DB 7114 CONFIRM http://www.memht.com/news_118_Small-fix-4-0-1.html XF memhtportal-ajaxrating-sql-injection(46610) SQL injection vulnerability in inc/ajax/ajax_rating.php in MemHT Portal 4.0.1 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.