Unrated severityNVD Advisory· Published Jan 18, 2006· Updated Apr 16, 2026

CVE-2006-0252

Description

SQL injection vulnerability in Benders Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via multiple parameters, as demonstrated by the (1) year, (2) month, and (3) day parameters.

Affected products

Benders Calendar/Benders Calendar
cpe:2.3:a:benders_calendar:benders_calendar:*:*:*:*:*:*:*:*
Range: <=1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

evuln.com/vulns/30/summary.htmlnvdExploitVendor Advisory
securitytracker.com/idnvdExploitVendor Advisory
secunia.com/advisories/18462nvdVendor Advisory
www.securityfocus.com/bid/16242nvdVendor Advisory
www.osvdb.org/22449nvd
www.securityfocus.com/archive/1/422052/100/0/threadednvd
www.vupen.com/english/advisories/2006/0190nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24120nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000