CVE-2009-3531
CVE-2009-3531: A SQL injection in Universe CMS 1.0.6 affects vnews.php, exploitable via the id parameter to allow remote execution of arbitrary SQL. Base CVSS v2 score 7.5 (HIGH). No remediation details are provided in the connected documents.