CVE-2006-6030
Multiple SQL injection vulnerabilities affect E-Calendar Pro 3.0. Remote attackers can execute arbitrary SQL via (1) username and (2) passwd fields in admin/default.asp or (3) Event Title, (4) Location, or (5) Description in search.asp, as described for CVE-2006-6030. The underlying issue is impr...