cpe:/a:xoops_hocasi:gesgaleri:_nil_ CVE-2008-5321 2008-12-03T14:30:00.423-05:00 2017-09-28T21:32:34.040-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-12-04T17:00:00.000-05:00 ALLOWS_OTHER_ACCESS BID 31808 SREASON 4682 EXPLOIT-DB 6778 XF gesgaleri-index-sql-injection(45976) SQL injection vulnerability in index.php in GesGaleri, a module for XOOPS, allows remote attackers to execute arbitrary SQL commands via the no parameter.