mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-12 01:02:37 +02:00
0xMarcio
685 B
685 B
CVE-2015-2196
Description
SQL injection vulnerability in Spider Event Calendar 1.4.9 for WordPress allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a spiderbigcalendar_month action to wp-admin/admin-ajax.php.
POC
Reference
No PoCs from references.