Ridder Roeland: >> Birthsys >> 3.1 Security Vulnerabilities
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error.
CVSS Score
7.5
EPSS Score
0.02
Published
2006-02-19