cpe:/a:sebrac:sebraccms:0.4 CVE-2008-5195 2008-11-21T12:30:00.530-05:00 2017-09-28T21:32:30.510-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-11-21T16:00:00.000-05:00 ALLOWS_USER_ACCESS BID 30003 SREASON 4620 EXPLOIT-DB 5967 VUPEN ADV-2008-1973 XF sebraccms-index-read-sql-injection(43453) Multiple SQL injection vulnerabilities in SebracCMS (sbcms) 0.4 allow remote attackers to execute arbitrary SQL commands via (1) the recid parameter to cms/form/read.php, (2) the uname parameter to cms/index.php, and other unspecified vectors.