|
|
WebCalendar CVE-2005-0474 SQL-Injection Vulnerability
WebCalendar is prone to a sql-injection vulnerability. SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote attackers to execute arbitrary SQL commands via an encoded webcalendar_session cookie. |
|
Privacy Statement |