cpe:/a:riotpix:riotpix:.05 cpe:/a:riotpix:riotpix:0.5 cpe:/a:riotpix:riotpix:0.51:beta cpe:/a:riotpix:riotpix:0.52 cpe:/a:riotpix:riotpix:0.60 cpe:/a:riotpix:riotpix:0.61 CVE-2009-0109 2009-01-09T13:30:03.157-05:00 2017-09-28T21:33:38.323-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T16:15:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33132 SECUNIA 33395 SREASON 4892 EXPLOIT-DB 7682 SQL injection vulnerability in index.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.