CVE-2008-1954

Publication date

2008-04-25 14:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user_id parameter.