cpe:/a:cpecreator:cp_creator:2.7.1 CVE-2009-3330 2009-09-23T08:08:35.640-04:00 2017-09-18T21:29:34.220-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-09-23T11:26:00.000-04:00 SECUNIA 36815 EXPLOIT-DB 9726 SQL injection vulnerability in index.php in cP Creator 2.7.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the tickets parameter in a support ticket action.