mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 02:45:46 +02:00
0xMarcio
716 B
716 B
CVE-2010-4910
Description
SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action.
POC
Reference
- http://packetstormsecurity.org/1009-exploits/coldcalendar-sql.txt
- http://securityreason.com/securityalert/8445
Github
No PoCs found on GitHub currently.