8.3 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.5%
Multiple SQL injection vulnerabilities in month.php in PHP Lite Calendar Express 2.2 allow remote attackers to execute arbitrary SQL commands via the (1) catid and (2) cid parameter. NOTE: this might be a duplicate of CVE-2005-4009.c.
securityreason.com/securityalert/1089
www.securityfocus.com/archive/1/436334/100/0/threaded
www.securityfocus.com/bid/18314
www.vupen.com/english/advisories/2006/2220