{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T05:48:20.777","vulnerabilities":[{"cve":{"id":"CVE-2008-6120","sourceIdentifier":"cve@mitre.org","published":"2009-02-11T17:30:00.483","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SQL injection vulnerability in profile_comments.php in SocialEngine (SE) 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the comment_secure parameter."},{"lang":"es","value":"Vulnerabilidad de inyección SQL en profile_comments.php en SocialEngine (SE) v2.7 y anteriores, permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro \"comment_secure\"."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:*:*:*:*:*:*:*:*","versionEndIncluding":"2.7","matchCriteriaId":"CC5320F9-263A-4024-A727-E306D684E2DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.0:*:*:*:*:*:*:*","matchCriteriaId":"BD56A40D-13BB-4241-9964-5175BE2E576F"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.1:*:*:*:*:*:*:*","matchCriteriaId":"E23A1147-BC44-459D-A69D-6DD6DDEFB7E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.4:*:*:*:*:*:*:*","matchCriteriaId":"48916655-CC40-4538-B062-416DC88506D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.6:*:*:*:*:*:*:*","matchCriteriaId":"19F8896D-AC27-4C0D-B22C-DBB3C0D18DBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.7:*:*:*:*:*:*:*","matchCriteriaId":"3A81D8CB-0FB8-46E9-A199-78A1FDE21D4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:1.8:*:*:*:*:*:*:*","matchCriteriaId":"2520FAB0-7DA5-4BE9-AF72-BBFD2636C6FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:2.0:*:*:*:*:*:*:*","matchCriteriaId":"C830CF2B-253A-49C7-B107-81503516A3B2"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:2.0:bta_online:*:*:*:*:*:*","matchCriteriaId":"B5F3AFA5-452F-4480-A538-56DFFF9DB987"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:2.1:*:*:*:*:*:*:*","matchCriteriaId":"51F75C06-691C-4EB6-8A23-DF46FDCC7360"},{"vulnerable":true,"criteria":"cpe:2.3:a:socialengine:socialengine:2.4:se:*:*:*:*:*:*","matchCriteriaId":"F1DD724C-FE53-48FD-8661-A09518E4EADF"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=122720734728665&w=2","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/32382","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/46770","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=122720734728665&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/32382","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/46770","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}