Description
The Joomla extension DP Calendar is vulnerable to an unauthenticated SQL injection.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
| Link | Providers |
|---|---|
| https://joomla.digital-peak.com/products/dpcalendar |
|
History
Wed, 15 Jul 2026 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | The Joomla extension DP Calendar is vulnerable to an unauthenticated SQL injection. | |
| Title | Joomla Extension - digital-peak.com - Unauthenticated blind SQL injection in DP Calendar 8.18.0 - 10.11.2 | |
| Weaknesses | CWE-89 | |
| References |
| |
| Metrics |
cvssV4_0
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Joomla
Published:
Updated: 2026-07-15T08:08:04.874Z
Reserved: 2026-06-25T16:55:04.094Z
Link: CVE-2026-57831
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')