Event Calender PHP Cross-Site Request Forgery Vulnerability
Event Calendar is an event calendar module for phpnuke. A cross-site request forgery vulnerability exists in the admin.php page of Event Calendar PHP version 1.5, which can be exploited by an attacker to add an administrator account or elevate privileges to an administrator account...