cpe:/a:hivemaker:hivemaker:1.0.2:-:pro CVE-2008-6427 2009-03-06T13:30:00.467-05:00 2017-09-28T21:33:10.183-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-03-09T12:06:00.000-04:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20080601 [ECHO_ADV_96$2008] HiveMaker Professional <= 1.0.2 (cid) Sql Injection Vulnerability SECUNIA 30465 OSVDB 45916 EXPLOIT-DB 5698 EXPLOIT-DB 5928 VUPEN ADV-2008-1923 XF hivemaker-index-sql-injection(42751) MISC http://e-rdc.org/v1/news.php?readmore=91 SQL injection vulnerability in index.php in Hivemaker Professional 1.0.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cid parameter.