Sql injection

SQL injection vulnerability in allcalendars.asp in MultiCalendars 3.0 allows remote attackers to execute arbitrary SQL commands via the calsids parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

[SA20030] MultiCalendars "calsids" Parameter SQL Injection Vulnerability

TITLE: MultiCalendars "calsids" Parameter SQL Injection Vulnerability SECUNIA ADVISORY ID: SA20030 VERIFY ADVISORY: http://secunia.com/advisories/20030/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: MultiCalendars 3.x http://secunia.com/product/9842/...