CNNVD-202506-1768 Information

CNNVD ID

CNNVD-202506-1768

Related CVE

CVE-2025-49468

• CNNVD Published: 2025-06-13

Description (Chinese)

No Boss Calendar是巴西No Boss公司的一款Joomla日历插件。 No Boss Calendar 5.0.7之前版本存在SQL注入漏洞，该漏洞源于id_module参数存在SQL注入。

Description (English)

No Boss Calendar is a Jomla calendar plugin for No Boss, Brazil. No Boss Calendar 5.7 had an injection loophole in SQL, which originated from the id module parameter in SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

No Boss

Published

2025-06-13

Last Modified

2026-02-24

References

https://nobossextensions.com/ https://access.redhat.com/security/cve/cve-2025-49468

Patch

https://www.nobossextensions.com/calendar/