cpe:/a:loudblog:loudblog:0.5 cpe:/a:loudblog:loudblog:0.6 cpe:/a:loudblog:loudblog:0.7 cpe:/a:loudblog:loudblog:0.8.0 cpe:/a:loudblog:loudblog:0.8.0a CVE-2008-6077 2009-02-06T06:30:00.313-05:00 2017-09-28T21:32:57.337-04:00 6.5 NETWORK LOW SINGLE_INSTANCE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-06T10:05:00.000-05:00 ALLOWS_OTHER_ACCESS BID 31878 SECUNIA 32378 EXPLOIT-DB 6808 XF loudblog-ajax-sql-injection(46045) SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.