cpe:/a:systemsoftware:erotik_auktionshaus CVE-2010-0720 2010-02-26T15:30:00.400-05:00 2017-08-16T21:32:05.587-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-03-01T18:03:00.000-05:00 EXPLOIT-DB 11489 SECUNIA 38614 OSVDB 62369 XF erotikauktionshaus-news-sql-injection(56330) MISC http://4004securityproject.wordpress.com/2009/10/21/erotik-auktionshaus-sql-injection-news-php/ MISC http://packetstormsecurity.org/1002-exploits/erotik-sql.txt SQL injection vulnerability in news.php in Erotik Auktionshaus allows remote attackers to execute arbitrary SQL commands via the id parameter.