CVE-2008-6104

SQL injection vulnerability in A4Desk PHP Event Calendar allows remote attackers to execute arbitrary SQL commands via the eventid parameter to admin/index.php.

Date published : 2009-02-10

http://www.securityfocus.com/bid/33835

http://packetstorm.linuxsecurity.com/0810-exploits/a4desk-sqldisclose.txt