cpe:/a:editeurscripts:esfaq:2.0 CVE-2008-6015 2009-01-30T13:30:05.327-05:00 2017-08-07T21:33:41.093-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-02T09:11:00.000-05:00 ALLOWS_OTHER_ACCESS SECUNIA 31721 XF esfaq-search-sql-injection(44979) Multiple SQL injection vulnerabilities in search.php in EsFaq 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) keywords and (2) cat parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.