cpe:/a:openskip:skip:0.9 cpe:/a:openskip:skip:1.0.0 cpe:/a:openskip:skip:1.0.1 cpe:/a:openskip:skip:1.0.2 cpe:/a:openskip:skip:1.1:rc cpe:/a:openskip:skip:1.1:rc2 CVE-2009-1909 2009-06-04T12:30:00.407-04:00 2009-06-05T00:00:00.000-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-06-05T08:54:00.000-04:00 BID 34898 SECUNIA 35041 JVN JVN#03114223 JVNDB JVNDB-2009-000026 CONFIRM http://dev.openskip.org/redmine/issues/show/677 CONFIRM http://portal.openskip.org/top/releasenote-ver1-0-0 SQL injection vulnerability in Skip 1.0.2 and earlier, and 1.1RC2 and earlier 1.1RC versions, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.