cpe:/a:cbauthority:cbauthority CVE-2009-3205 2009-09-16T13:30:00.420-04:00 2017-08-16T21:31:03.023-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-09-16T14:58:00.000-04:00 SECUNIA 36345 OSVDB 57161 XF cbauthority-main-sql-injection(52547) MISC http://packetstormsecurity.org/0908-exploits/cbauthority-sql.txt SQL injection vulnerability in main.php in CBAuthority allows remote attackers to execute arbitrary SQL commands via the id parameter in a view_product action.