Sql injection

2015-01-1311:59:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.9%

JSON

SQL injection vulnerability in load-calendar.php in PHPJabbers Event Booking Calendar 2.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter.

CPENameOperatorVersion
event_booking_calendareq2.0

CPE	Name	Operator	Version
	event_booking_calendar	eq	2.0

References

packetstormsecurity.com/files/124753/eventbookingcalendar-xssxsrfsql.txt