Lucene search
MitreCVELIST:CVE-2005-3366HistoryOct 29, 2005 - 7:00 p.m.
CVE-2005-3366
2005-10-2919:00:00
mitre
www.cve.org
8
PHP file inclusion vulnerability in index.php in PHP iCalendar 2.0a2 through 2.0.1 allows remote attackers to execute arbitrary PHP code and include arbitrary local files via the phpicalendar cookie. NOTE: this is not a cross-site scripting (XSS) issue as claimed by the original researcher.
References
archives.neohapsis.com/archives/fulldisclosure/2005-10/0512.html
marc.info/?l=bugtraq&m=113025930517426&w=2
secunia.com/advisories/17328/
securityreason.com/securityalert/113
securitytracker.com/id?1015102
www.securityfocus.com/bid/15193
www.ush.it/2005/10/25/php-icalendar-css/
www.vupen.com/english/advisories/2005/2204
exchange.xforce.ibmcloud.com/vulnerabilities/22864
Related
openvas
openvas
FreeBSD Ports: phpicalendar
2008-09-04 00:00:00
FreeBSD Ports: phpicalendar
2008-09-04 00:00:00
freebsd
freebsd
phpicalendar -- cross site scripting vulnerability
2005-10-25 00:00:00
nvd
nvd
CVE-2005-3366
2005-10-30 14:34:00
nessus
nessus
FreeBSD : phpicalendar -- XSS vulnerability (12f9d9e9-9e1e-11da-b410-000e0c2e438a)
2006-05-13 00:00:00
PHP iCalendar index.php phpicalendar Parameter Remote File Inclusion
2005-10-27 00:00:00
cve
cve
CVE-2005-3366
2005-10-30 14:34:00