Описание
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote attackers to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 1.0.5-1 |
| edgy | ignored | end of life, was needed |
| feisty | DNE | |
| gutsy | released | 1.0.5-1 |
| hardy | released | 1.0.5-1 |
| intrepid | released | 1.0.5-1 |
| jaunty | released | 1.0.5-1 |
| karmic | released | 1.0.5-1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
7.5 High
CVSS2
Связанные уязвимости
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote attackers to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9. ...
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote attackers to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.
7.5 High
CVSS2