SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote malicious users to execute arbitrary SQL commands via an encoded webcalendar_session cookie.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
webcalendar webcalendar 0.9.45 |