Описание
Multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 allow remote attackers to execute arbitrary SQL commands via the catview parameter to (1) cal_week.php, (2) cal_cat.php, or (3) cal_day.php, or (4) id parameter to cal_pophols.php.
Multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 allow remote attackers to execute arbitrary SQL commands via the catview parameter to (1) cal_week.php, (2) cal_cat.php, or (3) cal_day.php, or (4) id parameter to cal_pophols.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-1865
- http://archives.neohapsis.com/archives/bugtraq/2005-05/0356.html
- http://secunia.com/advisories/15569
- http://securitytracker.com/alerts/2005/May/1014083.html
- http://www.calendarix.com/download_advanced.php
- http://www.calendarix.com/download_basic.php
- http://www.osvdb.org/16971
- http://www.osvdb.org/16972
- http://www.osvdb.org/16974
- http://www.osvdb.org/16975
EPSS
Процентиль: 83%
0.02041
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
Multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 allow remote attackers to execute arbitrary SQL commands via the catview parameter to (1) cal_week.php, (2) cal_cat.php, or (3) cal_day.php, or (4) id parameter to cal_pophols.php.
EPSS
Процентиль: 83%
0.02041
Низкий