cpe:/a:ple_cms:ple_cms:1.0:beta_4.2 CVE-2009-0394 2009-02-02T20:30:00.343-05:00 2017-09-28T21:33:47.917-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-03T11:03:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33524 EXPLOIT-DB 7917 SQL injection vulnerability in login.php in Pre Lecture Exercises (PLEs) CMS 1.0 beta 4.2 allows remote attackers to execute arbitrary SQL commands via the school parameter.