Security Advisory

CVE-2023-46700

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-20 04:47:07

Last updated 2024-08-29 13:44:41

Assigner jpcert

State PUBLISHED

Description

SQL injection vulnerability in LuxCal Web Calendar prior to 5.2.4M (MySQL version) and LuxCal Web Calendar prior to 5.2.4L (SQLite version) allows a remote unauthenticated attacker to execute an arbitrary SQL command by sending a crafted request, and obtain or alter information stored in the database.

← Browse all CVEs View on cve.org ↗