CVE-2008-5840
CVE-2008-5840 affects PHP iCalendar 2.24 and earlier. The index.php script lacks sufficient access controls, allowing remote attackers to bypass authentication by setting cookies phpicalendar and phpicalendar_login to 1, enabling potentially malicious file uploads. Reported impact includes partia...