SQL Injection Vulnerability in PHPJabbers Event Booking Calendar by PHPJabbers
CVE-2014-10015

Currently unrated

Key Information:

Vendor: PHPjabbers
Status: Event Booking Calendar
Vendor: CVE Published:; 13 January 2015

What is CVE-2014-10015?

An SQL injection vulnerability exists in the load-calendar.php file of the PHPJabbers Event Booking Calendar 2.0, which permits remote attackers to execute arbitrary SQL commands through manipulation of the cid parameter, potentially allowing unauthorized access to sensitive data.

References

http://packetstormsecurity.com/files/124753/eventbookingc...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 13, 2015

PHPjabbers

What is CVE-2014-10015?

References

Timeline