cpe:/a:videoscript:youtube_video_script:- CVE-2009-1804 2009-05-28T10:30:00.407-04:00 2017-09-28T21:34:34.187-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-05-28T11:44:00.000-04:00 BID 34868 EXPLOIT-DB 8635 XF videoscript-index-sql-injection(50373) Multiple SQL injection vulnerabilities in admin/index.php in VideoScript.us YouTube Video Script allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.