RSS   Vulnerabilities for 'Calendar module'   RSS

2008-08-04
 
CVE-2008-3452

CWE-89
 

 
SQL injection vulnerability in the Calendar module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the loc_id parameter in a list_events action to mod.php.

 

 >>> Vendor: Endonesia 2 Products
Endonesia
Calendar module


Copyright 2024, cxsecurity.com

 

Back to Top