CVE-2008-6104

CVE-2008-6104

EPSS 1.0%

SQL injection vulnerability in A4Desk PHP Event Calendar allows remote attackers to execute arbitrary SQL commands via the eventid parameter to admin/index.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstorm.linuxsecurity.com/0810-exploits/a4desk-sqldisclose.txt http://secunia.com/advisories/32083 http://www.securityfocus.com/bid/33835