← CVECheck
HomeVulnerabilities

CVE-2004-1654 — HIGH severity vulnerability (SQL injection vulnerability in the calendar module in phpWeb)

SQL injection vulnerability in the calendar module in phpWebsite 0.9.3-4 and earlier allows remote attackers to execute arbitrary SQL commands via cal_template.

CVE IDCVE-2004-1654
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-09-01
Last modified2026-04-16
DescriptionSQL injection vulnerability in the calendar module in phpWebsite 0.9.3-4 and earlier allows remote attackers to execute arbitrary SQL commands via cal_template.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →