SQL-inj and Auth Bypass in 2200net Calendar system
Summary for SQL-inj and Auth Bypass in 2200net Calendar system
- Vulnerability
- SQL-inj and Auth Bypass in 2200net Calendar system
- Discovered
- 2006.02.05
- Last Update
- 2006.02.15 Exploitation code published
- ID
- EV0062
- CVE
- CVE-2006-0610
- Risk Level
- medium
- Type
- SQL Injection
- Status
- Unpatched. No reply from developer(s)
- Vendor
- n/a
- Vulnerable Software
- 2200net Calendar system
- Version
- 1.2
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Order PHP Code Audit made by eVuln team
Protect against attacks by source code review of your website done by our team.The work will be done by specialists in web security.