CVE-2006-0673

2006-02-13T22:02:00
ID CVE-2006-0673
Type cve
Reporter cve@mitre.org
Modified 2018-10-19T15:45:00

Description

Multiple SQL injection vulnerabilities in cms/index.php in Magic Calendar Lite 1.02, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the (1) $total_login and (2) $total_password parameter.