Описание
PHP remote file inclusion vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS["CLPath"] parameter to (1) reconfig.php and (2) srxclr.php. NOTE: this might be due to a globals overwrite issue.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:calogic:calogic_calendars:1.2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04945
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
PHP remote file inclusion vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS["CLPath"] parameter to (1) reconfig.php and (2) srxclr.php. NOTE: this might be due to a globals overwrite issue.
EPSS
Процентиль: 89%
0.04945
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other