CVE-2012-2925

Publication date

2012-05-21 22:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action.