cpe:/a:dmxready:blog_manager:_nil_ CVE-2009-0339 2009-01-29T13:30:02.703-05:00 2017-08-07T21:33:54.033-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-29T17:01:00.000-05:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20090116 DMXReady Blog Manager (SQL/XSS) BID 33314 SECUNIA 33601 XF blogmanager-incwebblogmanager-sql-injection(48054) MISC http://dmxready.helpserve.com/index.php?_m=news&_a=viewnews&newsid=12 SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action.