2 matches found
CVE-2006-1341
SQL injection vulnerability in events.php in Maian Events 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters...
CVE-2006-1341
Maian Events 1.0 is affected by CVE-2006-1341. The vulnerability lies in events.php where the (month, year) parameters are not properly sanitized before being used in SQL queries, allowing remote attackers to inject arbitrary SQL. A PoC/exploit is available (per eVuln). No patch information is pr...