CVE-2008-6608

DevelopItEasy Events Calendar 1.2 is affected by multiple SQL injection vulnerabilities. The flaws allow remote attackers to execute arbitrary SQL commands through (1) user_name (user field) or (2) user_pass (pass field) in admin/index.php, or (3) id in calendar_details.php. Root cause: improper ...