cpe:/a:gwm:galatolo_webmanager:1.3a CVE-2008-6249 2009-02-23T12:30:00.407-05:00 2017-09-28T21:33:02.980-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-24T11:53:00.000-05:00 BID 30232 SECUNIA 31098 EXPLOIT-DB 6075 XF galatolo-index-sql-injection(46677) SQL injection vulnerability in plugins/users/index.php in Galatolo WebManager 1.3a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.