7.6 High
AI Score
Confidence
Low
0.027 Low
EPSS
Percentile
90.6%
Multiple PHP remote file inclusion vulnerabilities in myPHPCalendar 10.1 allow remote attackers to execute arbitrary PHP code via a URL in the cal_dir parameter to (1) admin.php, (2) contacts.php, or (3) convert-date.php.
www.securityfocus.com/bid/21785
www.exploit-db.com/exploits/3019