cpe:/a:enanocms:enanocms:0.8.1 cpe:/a:enanocms:enanocms:0.8.2 cpe:/a:enanocms:enanocms:0.8.3 cpe:/a:enanocms:enanocms:0.8.4 cpe:/a:enanocms:enanocms:0.9.1 cpe:/a:enanocms:enanocms:0.9.2 cpe:/a:enanocms:enanocms:0.9.3 cpe:/a:enanocms:enanocms:1.0 cpe:/a:enanocms:enanocms:1.0.1 cpe:/a:enanocms:enanocms:1.0.2 cpe:/a:enanocms:enanocms:1.0.2b1 cpe:/a:enanocms:enanocms:1.0.3 cpe:/a:enanocms:enanocms:1.0.4 cpe:/a:enanocms:enanocms:1.0.5 cpe:/a:enanocms:enanocms:1.0.6 CVE-2010-0471 2010-02-02T12:30:00.547-05:00 2010-06-23T00:00:00.000-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-02-03T13:01:00.000-05:00 SECUNIA 38253 OSVDB 61974 CONFIRM http://enanocms.org/Release_notes/1.0.6pl1 SQL injection vulnerability in the comment submission interface (includes/comment.php) in Enano CMS before 1.0.6pl1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.