cpe:/a:uiga:church_portal CVE-2009-3116 2009-09-09T18:30:00.280-04:00 2017-09-18T21:29:28.170-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-09-10T09:46:00.000-04:00 SECUNIA 36479 OSVDB 57464 EXPLOIT-DB 9535 VUPEN ADV-2009-2458 XF uigaindex-sql-injection(52893) SQL injection vulnerability in index.php in Uiga Church Portal allows remote attackers to execute arbitrary SQL commands via the year parameter in a calendar action.