CVE-2009-2242
The CVE-2009-2242 entry describes a SQL injection vulnerability in active_appointments.asp of the ASP Inline Corporate Calendar. The flaw allows remote attackers to inject arbitrary SQL commands via the order parameter, potentially compromising the underlying database. The vulnerability is docume...