2 matches found
CVE-2008-2429
Multiple SQL injection vulnerabilities in Calendarix Basic 0.8.20071118 allow remote attackers to execute arbitrary SQL commands via 1 the catsearch parameter to calsearch.php or 2 the catview parameter to calcat.php. NOTE: vector 1 might overlap CVE-2007-3183.3, and vector 2 might overlap...
CVE-2008-2429
Summary of CVE-2008-2429 (Calendarix Basic): Two SQL injection vulnerabilities in Calendarix Basic 0.8.20071118 affect the catsearch and catview parameters (cal_search.php and cal_cat.php). The vulnerabilities arise because user input is not properly sanitized before being used in SQL queries, en...