Vulnerabilities > Limbo CMS > COM Privmsg
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-06 | CVE-2008-6078 | SQL Injection vulnerability in Limbo CMS COM Privmsg SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a pms action to index.php. | 7.5 |