2 matches found
CVE-2007-3183
CVE-2007-3183 affects Calendarix 0.7.20070307. When magic_quotes_gpc is disabled, input to calendar.php (month, year) and cal_search.php (search) is not properly sanitized, enabling remote attackers to inject arbitrary SQL commands. The entry notes three vectors: (1) month, (2) year in calendar.p...
Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities
netVigilance Security Advisory 38 Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities Description: Calendarix is a powerful and easy to use calendar based on PHP and MySQL. It has been developed with ease of use and quick access to information in mind. It provides the user wit...