cpe:/a:bpowerhouse:bpstudents:1.0 CVE-2009-3501 2009-09-30T11:30:00.860-04:00 2017-08-16T21:31:08.287-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-10-01T08:06:00.000-04:00 SECUNIA 36826 OSVDB 58293 VUPEN ADV-2009-2741 XF bpstudent-students-sql-inection(53428) MISC http://packetstormsecurity.org/0909-exploits/bpstudent-sql.txt SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action.