SQL injection vulnerability in index.php in Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the username parameter.Referenceshttp://securityreason.com/securityalert/4815http://secunia.com/advisories/33266https://www.exploit-db.com/exploits/7551http://www.securityfocus.com/bid/32978http://osvdb.org/50892https://exchange.xforce.ibmcloud.com/vulnerabilities/47544
