3 matches found
Benders Calendar index.php this_day Parameter SQL Injection - Ver2 (CVE-2006-0252)
An SQL injection vulnerability has been reported in Benders Calendar. A remote attacker could trigger this vulnerability via the year, month and day parameters. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
Benders Calendar index.php this_day Parameter SQL Injection - Ver2 (CVE-2006-0252)
An SQL injection vulnerability has been reported in Benders Calendar. A remote attacker could trigger this vulnerability via the year, month and day parameters. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2006-0252
CVE-2006-0252 describes an SQL injection in Benders Calendar 1.0 exposed via the index.php this_day/parameters (year, month, day). The vulnerability allows a remote attacker to execute arbitrary SQL commands. Connected advisories confirm remote SQL execution via these parameters; no specific patc...