cpe:/a:cafuego:simple_document_management_system:1.1.4 cpe:/a:cafuego:simple_document_management_system:1.1.5 CVE-2008-6236 2009-02-21T18:30:00.280-05:00 2017-08-16T21:29:09.097-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-23T15:51:00.000-05:00 BID 32114 SECUNIA 32502 XF sdms-login-sql-injection(46342) XF sdms-login-sql-injection(48944) SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the login parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.