23 matches found
PHP-Calendar Multiple Script phpc_root_path Parameter Remote File Inclusion
The remote web server is running PHP-Calendar, a web-based calendar written in PHP. The remote version of this software is vulnerable to a file inclusion flaw that could allow an attacker to execute arbitrary PHP commands on the remote host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2001-0043
phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgwinfo parameter of the phpgw.inc.php program...
CVE-2001-0043
phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgwinfo parameter of the phpgw.inc.php program...