cpe:/a:pardalcms:pardalcms:0.1.1 cpe:/a:pardalcms:pardalcms:0.1.2 cpe:/a:pardalcms:pardalcms:0.1.3 cpe:/a:pardalcms:pardalcms:0.1a cpe:/a:pardalcms:pardalcms:0.01b cpe:/a:pardalcms:pardalcms:0.01c cpe:/a:pardalcms:pardalcms:0.2.0 CVE-2009-0279 2009-01-27T13:30:00.280-05:00 2017-09-28T21:33:43.403-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-27T13:41:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33404 EXPLOIT-DB 7851 XF pardalcms-comentar-sql-injection(48175) SQL injection vulnerability in comentar.php in Pardal CMS 0.2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.