PHP Lite Calendar Express month.php Multiple Variable SQL Injection

2006-06-07T21:23:51
ID OSVDB:26640
Type osvdb
Reporter OSVDB
Modified 2006-06-07T21:23:51

Description

Manual Testing Notes

/print/month.php?cid=&catid=[SQL] /print/month.php?cid=[SQL]

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0054.html FrSIRT Advisory: ADV-2006-2220 CVE-2006-2973 Bugtraq ID: 18314