2 matches found
CVE-2006-6792
CVE-2006-6792 affects Calendar MX BASIC 1.0.2 and earlier, with an SQL injection via the ID parameter in calendar_detail.asp. The vulnerability details provided indicate remote attackers could potentially manipulate SQL commands, aligned with a CVSS v2 base score of 7.5 (HIGH) and network access ...
CVE-2006-2292
CVE-2006-2292 involves multiple SQL injection vulnerabilities in IA-Calendar. The affected components are the web interfaces calendar_new.asp (type parameter) and default.asp, and calendar_detail.asp (ID parameter). The underlying flaw allows remote attackers to craft input that could execute arb...