Unrated severityNVD Advisory· Published Jun 26, 2007· Updated Jun 16, 2026
CVE-2007-3183
CVE-2007-3183
Description
Multiple SQL injection vulnerabilities in Calendarix 0.7.20070307, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters to calendar.php and the (3) search string to cal_search.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:vincent_hor:calendarix:0.7.2007-03-07:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:vincent_hor:calendarix:0.7.2007-03-07:*:*:*:*:*:*:*
- (no CPE)range: =0.7.20070307
Patches
Vulnerability mechanics
References
10- www.netvigilance.com/advisory0038nvdExploitVendor Advisory
- osvdb.org/35694nvd
- secunia.com/advisories/25795nvd
- securityreason.com/securityalert/2837nvd
- www.osvdb.org/35373nvd
- www.securityfocus.com/archive/1/472221/100/0/threadednvd
- www.securityfocus.com/bid/24633nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2324nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35046nvd
News mentions
0No linked articles in our index yet.