cpe:/a:asp-cms:asp-cms:1.0 CVE-2008-6353 2009-03-02T11:30:00.453-05:00 2017-09-28T21:33:07.527-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-03-02T14:55:00.000-05:00 ALLOWS_OTHER_ACCESS BID 32786 SECUNIA 33128 EXPLOIT-DB 7429 SQL injection vulnerability in index.asp in ASP-CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the cha parameter.