SQL injection vulnerability in calendar_download.php in BosDates 3.2 and earlier allows remote attackers to obtain sensitive information and gain access via the calendar parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bosdates | Bosdev | 3.0 (including) | 3.0 (including) |
Bosdates | Bosdev | 3.1 (including) | 3.1 (including) |
Bosdates | Bosdev | 3.2 (including) | 3.2 (including) |