Unrated severityNVD Advisory· Published Mar 3, 2015· Updated Jun 17, 2026
CVE-2015-2196
CVE-2015-2196
Description
SQL injection vulnerability in Spider Event Calendar 1.4.9 for WordPress allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a spiderbigcalendar_month action to wp-admin/admin-ajax.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:web-dorado:spider_calendar:1.4.9:*:*:*:*:wordpress:*:*
- Range: =1.4.9
Patches
Vulnerability mechanics
References
1- www.exploit-db.com/exploits/36061nvdExploit
News mentions
0No linked articles in our index yet.