Nodstrum: Security Vulnerabilities
SQL injection vulnerability in index.php in Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the username parameter.
CVSS Score
7.5
EPSS Score
0.005
Published
2008-12-26
Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the nodstrumCalendarV2 cookie to 1. NOTE: some of these details are obtained from third party information.
CVSS Score
7.5
EPSS Score
0.024
Published
2008-12-26