cpe:/a:lingxia273:lingxia_i.c.e_cms:1.0 CVE-2011-1055 2011-02-21T14:00:02.007-05:00 2018-08-13T17:47:37.617-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2011-02-22T13:03:00.000-05:00 EXPLOIT-DB 16171 SECUNIA 43327 BID 46373 MISC http://www.stratsec.net/Research/Advisories/Lingxia-273-I-C-E-CMS-Blind-SQL-Injection-(SS-2011 XF icecms-media-sql-injection(65462) XF lingxiaicecms-media-sql-injection(65477) SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.