K5N : Security Vulnerabilities, CVEs, CVSS score >= 7
PHP remote file inclusion vulnerability in send_reminders.php in WebCalendar 1.0.4 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter and a 0 value for the noSet parameter, a different vector than CVE-2007-1483.
Max CVSS
7.5
EPSS Score
5.60%
Published
2008-06-24
Updated
2017-09-29
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote attackers to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.
Max CVSS
7.5
EPSS Score
6.34%
Published
2007-03-16
Updated
2018-10-16
2 vulnerabilities found