cpe:/a:phpnuke:php-nuke:8.0 CVE-2009-1842 2009-06-01T10:30:00.280-04:00 2017-08-16T21:30:31.927-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-06-01T13:49:00.000-04:00 BID 35117 MISC http://gsasec.blogspot.com/2009/05/php-nuke-v80-referer-sql-injection.html XF phpnuke-userlog-sql-injection(50818) SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL commands via the HTTP Referer header.