{"result": {"cve": [{"id": "CVE-2010-4870", "type": "cve", "title": "CVE-2010-4870", "description": "SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote attackers to execute arbitrary SQL commands via the gender parameter.", "published": "2011-10-07T06:55:06", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4870", "cvelist": ["CVE-2010-4870"], "lastseen": "2017-08-29T11:19:04"}], "openvas": [{"id": "OPENVAS:100877", "type": "openvas", "title": "bloofoxCMS 'gender' Parameter SQL Injection Vulnerability", "description": "bloofoxCMS is prone to an SQL-injection vulnerability because it\nfails to sufficiently sanitize user-supplied data before using it in\nan SQL query.\n\nExploiting this issue can allow an attacker to compromise the\napplication, access or modify data, or exploit latent vulnerabilities\nin the underlying database.\n\nbloofoxCMS 0.3.5 is vulnerable; other versions may also be affected.", "published": "2010-10-28T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=100877", "cvelist": ["CVE-2010-4870"], "lastseen": "2017-07-02T21:09:54"}, {"id": "OPENVAS:1361412562310100877", "type": "openvas", "title": "bloofoxCMS 'gender' Parameter SQL Injection Vulnerability", "description": "bloofoxCMS is prone to an SQL-injection vulnerability because it fails to\nsufficiently sanitize user-supplied data before using it in an SQL query.\n\nExploiting this issue can allow an attacker to compromise the application, access or modify data, or exploit\nlatent vulnerabilities in the underlying database.\n\nbloofoxCMS 0.3.5 is vulnerable; other versions may also be affected.", "published": "2010-10-28T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310100877", "cvelist": ["CVE-2010-4870"], "lastseen": "2018-01-26T11:05:35"}]}}