CVE-2015-4654

CVE-2015-4654

EPSS 1.3%

SQL injection vulnerability in the EQ Event Calendar component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to eqfullevent.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/132220/Joomla-EQ-Event-Calendar-SQL-Injection.html http://www.securityfocus.com/bid/75261