3 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in sendreminders.php in WebCalendar 1.0.4 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter and a 0 value for the noSet parameter, a different vector than CVE-2007-1483...
CVE-2008-2836
PHP remote file inclusion vulnerability in sendreminders.php in WebCalendar 1.0.4 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter and a 0 value for the noSet parameter, a different vector than CVE-2007-1483...
CVE-2007-1483
CVE-2007-1483 affects WebCalendar 0.9.45 with multiple PHP remote file inclusion vulnerabilities. The flaw allows an attacker to supply a URL in the includedir parameter to one of three scripts (login.php, get_reminders.php, get_events.php), enabling arbitrary PHP code execution on the affected s...