Lucene search

CVE-2004-1423

🗓️ 12 Feb 2005 05:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov👁 52 Views🌐 WEB

CVE-2004-1423 Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Tenable Nessus	PHP-Calendar Multiple Script phpc_root_path Parameter Remote File Inclusion	29 Dec 200400:00	–	nessus
exploitpack	PHP-Calendar 0.10.1 - Arbitrary File Inclusion	29 Dec 201400:00	–	exploitpack
Exploit DB	PHP-Calendar < 0.10.1 - Arbitrary File Inclusion	29 Dec 201400:00	–	exploitdb
Cvelist	CVE-2004-1423	12 Feb 200505:00	–	cvelist
NVD	CVE-2004-1423	31 Dec 200405:00	–	nvd

Nvd

Node

php-calendar php-calendarRange≤0.10

php-calendar php-calendarMatch0.1

php-calendar php-calendarMatch0.2

php-calendar php-calendarMatch0.3

php-calendar php-calendarMatch0.4

php-calendar php-calendarMatch0.5

php-calendar php-calendarMatch0.6

php-calendar php-calendarMatch0.7

php-calendar php-calendarMatch0.8

php-calendar php-calendarMatch0.9

php-calendar php-calendarMatch0.9.1

Source	Link
vupen	www.vupen.com/english/advisories/2006/4145
exploit-db	www.exploit-db.com/exploits/2608
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/29710
sourceforge	www.sourceforge.net/project/shownotes.php
secunia	www.secunia.com/advisories/22516
marc	www.marc.info/
securityfocus	www.securityfocus.com/archive/1/449397/100/0/threaded
securitytracker	www.securitytracker.com/id
securityfocus	www.securityfocus.com/bid/20657
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/18710

Parameter	Position	Path	Description	CWE
phpc_root_path	query param	/includes/calendar.php	Arbitrary file inclusion vulnerability allowing attackers to execute PHP code.	CWE-94
phpc_root_path	query param	/includes/setup.php	Arbitrary file inclusion vulnerability allowing attackers to execute PHP code.	CWE-94

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Feb 2005 05:00Current

7.6High risk

Vulners AI Score7.6

CVSS27.5

EPSS0.10744

CWE-94