MamboLaiThai ExtCalThai 0.9.1 admin_events.php CONFIG_EXT[LANGUAGES_DIR] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/20487/info ExtCalThai is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and...

CVE-2006-6634

Multiple PHP remote file inclusion vulnerabilities in the ExtCalThai comextcalendar 0.9.1 and earlier component for Mambo allow remote attackers to execute arbitrary PHP code via a URL in 1 the CONFIGEXTLANGUAGESDIR parameter to adminevents.php, 2 the mosConfigabsolutepath parameter to...