ExtCalendar 2 SQL Injection

2011-01-11T00:00:00
ID PACKETSTORM:97431
Type packetstorm
Reporter Lagripe-Dz
Modified 2011-01-11T00:00:00

Description

                                        
                                            `# Title : ExtCalendar 2 (calendar.php) SQL Injection Vulnerability  
# Author : Lagripe-Dz  
# Product: ExtCalendar 2  
# Download : http://sourceforge.net/projects/extcal/  
# Date: 10/01/2011  
# Dork : inurl:calendar.php?mode=cat  
  
================================================================  
  
-== ExPloiT ==-  
  
http://www.site.com/[PATH]/calendar.php?mode=cat&cat_id=[SQL.i]  
  
  
================================================================  
  
Greetz To : MCA-CRB , BrOx-Dz , DyinG.Dz & All Dz  
Greetz To All Members of : wWw.sEc4EvEr.CoM , wWw.sEc-wAr.CoM  
  
  
`