2 matches found
CVE-2010-4795
SQL injection vulnerability in the JS Calendar comjscalendar component 1.5.1 and 1.5.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the evid parameter in a details action to index.php. NOTE: some of these details are obtained from third party information...
CVE-2010-4795
CVE-2010-4795: A SQL injection vulnerability affects the Joomla! JS Calendar (com_jscalendar) component versions 1.5.1 and 1.5.4. The flaw allows remote attackers to execute arbitrary SQL commands via the ev_id parameter in a details action to index.php. Underlying issue is improper handling of u...