Security Advisory

CVE-2023-39939

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-21 08:14:23

Last updated 2024-10-04 17:53:12

Assigner jpcert

State PUBLISHED

Description

SQL injection vulnerability in LuxCal Web Calendar prior to 5.2.3M (MySQL version) and LuxCal Web Calendar prior to 5.2.3L (SQLite version) allows a remote unauthenticated attacker to execute arbitrary queries against the database and obtain or alter the information in it.

← Browse all CVEs View on cve.org ↗