Описание
SQL injection vulnerability in detail.asp in DUware DUcalendar 1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the iEve parameter.
SQL injection vulnerability in detail.asp in DUware DUcalendar 1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the iEve parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-2868
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43325
- https://www.exploit-db.com/exploits/5927
- http://secunia.com/advisories/30774
- http://www.securityfocus.com/bid/29919
- http://www.securitytracker.com/id?1020358
- http://www.vupen.com/english/advisories/2008/1924
Связанные уязвимости
nvd
больше 17 лет назад
SQL injection vulnerability in detail.asp in DUware DUcalendar 1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the iEve parameter.