Описание
Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and earlier allows remote attackers to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.
Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and earlier allows remote attackers to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0206
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24110
- http://attrition.org/pipermail/vim/2006-March/000612.html
- http://evuln.com/vulns/29/exploit.html
- http://evuln.com/vulns/29/summary.html
- http://secunia.com/advisories/18450
- http://www.osvdb.org/22376
- http://www.securityfocus.com/archive/1/421920
- http://www.securityfocus.com/bid/16229
- http://www.vupen.com/english/advisories/2006/0171
EPSS
Процентиль: 93%
0.10246
Средний
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and earlier allows remote attackers to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.
EPSS
Процентиль: 93%
0.10246
Средний