MidnightBSD

Advisories for simple_php_agenda

CVE-2012-2925 HIGH

SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
simple_php_agenda simple_php_agenda 2.2.8