cpe:/a:socialengine:socialengine:3.06::trial CVE-2009-0400 2009-02-03T14:30:00.377-05:00 2017-09-28T21:33:48.200-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-02-04T09:13:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33495 SECUNIA 33701 OSVDB 51644 EXPLOIT-DB 7900 XF socialengine-blog-sql-injection(48316) SQL injection vulnerability in blog.php in SocialEngine 3.06 trial allows remote attackers to execute arbitrary SQL commands via the category_id parameter.