CVE-2005-4008
CVE-2005-4008 affects Jax Calendar 1.34. A SQL injection flaw exists in jax_calendar.php, exploitable via the cal_id parameter and possibly Y and m parameters, allowing remote attackers to alter/steal data. The NVD reports a CVSSv2 base score of 7.5 ( HIGH ) with network access, low attack comple...