CVE-2008-3452 (eNdonesia, calendar_module) [Sitemap] - HeapOverflow Computer Security Community & Forums : Heap Overflow.com

PDA

View Full Version : CVE-2008-3452 (eNdonesia, calendar_module)

Heap

05-08-08, 15:18

SQL injection vulnerability in the Calendar module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the loc_id parameter in a list_events action to mod.php.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3452)