{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T12:11:04.417","vulnerabilities":[{"cve":{"id":"CVE-2009-0110","sourceIdentifier":"cve@mitre.org","published":"2009-01-09T18:30:03.170","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SQL injection vulnerability in read.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the forumid parameter."},{"lang":"es","value":"Vulnerabilidad de inyección SQL en read.php en RiotPix v0.61 y versiones anteriores permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro \"forumid\"."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:*:*:*:*:*:*:*:*","versionEndIncluding":"0.61","matchCriteriaId":"579A8B17-A387-456B-B69B-E61C8AF494A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:.05:*:*:*:*:*:*:*","matchCriteriaId":"37D890AB-C2E9-4EB8-B93B-8049268AF18D"},{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:0.5:*:*:*:*:*:*:*","matchCriteriaId":"5E2F6D77-C16A-41D3-A310-8F791DEE374B"},{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:0.51:beta:*:*:*:*:*:*","matchCriteriaId":"E1D5D5F6-955C-4B13-85DA-430CCB3F9B4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:0.52:*:*:*:*:*:*:*","matchCriteriaId":"B9D4B3E4-FFA6-4113-91D1-3A7AB06BB4CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:riotpix:riotpix:0.60:*:*:*:*:*:*:*","matchCriteriaId":"364B2C1A-621D-402F-9C95-C6102D5DBC9F"}]}]}],"references":[{"url":"http://secunia.com/advisories/33395","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://securityreason.com/securityalert/4893","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/33129","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://www.exploit-db.com/exploits/7679","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/33395","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://securityreason.com/securityalert/4893","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/33129","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://www.exploit-db.com/exploits/7679","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}