CVE-2008-6078
CVE-2008-6078 : In Limbo CMS, the Private Messaging (com_privmsg) component’s open.php is vulnerable to SQL injection via the id parameter in a pms action to index.php. The NVD entry cites a base CVSSv2 score of 7.5 (HIGH) with network access, low attack complexity, and no authentication required...