Critical severity9.1NVD Advisory· Published Aug 21, 2023· Updated Jun 17, 2026
CVE-2023-39939
CVE-2023-39939
Description
SQL injection vulnerability in LuxCal Web Calendar prior to 5.2.3M (MySQL version) and LuxCal Web Calendar prior to 5.2.3L (SQLite version) allows a remote unauthenticated attacker to execute arbitrary queries against the database and obtain or alter the information in it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <5.2.3M (MySQL), <5.2.3L (SQLite)
- Range: prior to 5.2.3L (SQLite version)
Patches
Vulnerability mechanics
References
3- jvn.jp/en/jp/JVN04876736/nvdThird Party Advisory
- www.luxsoft.eunvdProduct
- www.luxsoft.eunvdProduct
News mentions
0No linked articles in our index yet.