4 matches found
EUVD-2012-4184
Malware in sbrugna...
CVE-2012-4240
SQL injection vulnerability in modules/calendar/json.php in Group-Office community before 4.0.90 allows remote authenticated users to execute arbitrary SQL commands via the sort parameter...
CVE-2012-4240
SQL injection vulnerability in modules/calendar/json.php in Group-Office community before 4.0.90 allows remote authenticated users to execute arbitrary SQL commands via the sort parameter...
CVE-2012-4240
Group-Office Calendar SQL Injection (CVE-2012-4240) affects Group-Office community versions prior to 4.0.90. The vulnerability lies in modules/calendar/json.php where the sort parameter is unsafely injected into an ORDER BY SQL clause. An authenticated user can exploit this to cause database erro...