SQL injection vulnerability in aspWebCalendar allows remote attackers to execute arbitrary SQL statements via (1) the username field on the login page or (2) the eventid parameter to calendar.asp.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Aspwebcalendar | Full_revolution | 4.5 (including) | 4.5 (including) |