CVE-2008-3452

SQL injection vulnerability in the Calendar module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the loc_id parameter in a list_events action to mod.php.

Date published : 2008-08-04

http://www.securityfocus.com/bid/30457

https://www.exploit-db.com/exploits/6171