2 matches found
ExtCalendar 2.0 Authentication bypass
Authentication bypass vulnerability in Extcalendar Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
CVE-2006-3556
The CVE-2006-3556 entry refers to a PHP Remote File Inclusion in ExtCalendar 2.0 by Mohamed Moujami. Connected sources confirm the vulnerability is triggered via the mosConfig_absolute_path parameter in extcalendar.php, allowing a remote attacker to cause arbitrary PHP code execution. Impact is p...