CVE-2007-6158

Proverbs Web Calendar 1.1 and earlier have multiple SQL injection vulnerabilities in caladmin.inc.php that allow remote attackers to execute arbitrary SQL commands via loginname (Username) and loginpass (Password) parameters to caladmin.php. Affected component is caladmin.inc.php; vulnerability d...