RSS   Vulnerabilities for 'Expanded calendar module'   RSS

2007-04-03
 
CVE-2007-1845

CWE-Other
 

 
SQL injection vulnerability in show_event.php in the Expanded Calendar (calendar_panel) 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the m_month parameter.

 

 >>> Vendor: Php fusion 3 Products
Php fusion
Expanded calendar module
Arcade module


Copyright 2020, cxsecurity.com

 

Back to Top