SQL injection vulnerability in eventdisplay.php in phpEventCalendar 0.2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Phpeventcalendar | Wesmo | * | 0.2.3 (including) |