CVE-2013-3961

N/A Unknown

Published: March 11, 2014 Modified: May 06, 2026

Description

SQL injection vulnerability in edit_event.php in Simple PHP Agenda before 2.2.9 allows remote authenticated users to execute arbitrary SQL commands via the eventid parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/94141

Source: cve@mitre.org

Broken Link

http://packetstormsecurity.com/files/121978/Simple-PHP-Agenda-2.2.8-SQL-Injection.html

Source: cve@mitre.org

Exploit Third Party Advisory

http://seclists.org/fulldisclosure/2013/Jun/67

Source: cve@mitre.org

Exploit Issue Tracking

http://www.exploit-db.com/exploits/26136

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/60481

Source: cve@mitre.org

Exploit Third Party Advisory

http://www.webera.fr/advisory-02-php-agenda-isql-exploit

Source: cve@mitre.org

Exploit Third Party Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/84938

Source: cve@mitre.org

http://osvdb.org/94141