SQL injection vulnerability in LuxCal Web Calendar before 5.2.4M (MySQL version) and LuxCal Web Calendar before 5.2.4L (SQLite version) allows a remote unauthenticated malicious user to execute an arbitrary SQL command by sending a crafted request, and obtain or alter information stored in the database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
luxsoft luxcal web calendar |