2 matches found
XOOPS Module Amevents SQL Injection (CVE-2008-5768)
An SQL injection vulnerability has been reported in Sirium Am Events Module. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2008-5768
The CVE-2008-5768 entry is an actionable SQL injection in the AM Events module (Amevents) for XOOPS version 0.22, exploitable through print.php via the id parameter. The underlying issue is a direct SQL command construction vulnerability that allows remote attackers to execute arbitrary SQL comma...