CVE-2005-3984
Publication date 4 December 2005
Last updated 24 July 2024
Ubuntu priority
SQL injection vulnerability in WebCalendar 1.0.1 allows remote attackers to execute arbitrary SQL commands via the time_range parameter to edit_report_handler.php. NOTE: the startid/activity_log.php vector is already covered by CVE-2005-3949.