CVE-2008-2868

Publication date

2008-06-26 17:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in detail.asp in DUware DUcalendar 1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the iEve parameter.