Lucene search
MitreCVELIST:CVE-2009-3702HistoryDec 22, 2009 - 7:00 p.m.
CVE-2009-3702
2009-12-2219:00:00
mitre
www.cve.org
1
Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote attackers to include and execute arbitrary local files via a full pathname in the configfile parameter to (1) update08.php or (2) update10.php. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
Related
seebug
seebug
PHP-Calendar configfileειθΏη¨ζδ»Άε
ε«ζΌζ΄
2009-12-25 00:00:00
securityvulns
securityvulns
prion
prion
Path traversal
2009-12-22 19:30:00
openvas
openvas
PHP-Calendar Multiple Remote And Local File Inclusion Vulnerabilities
2009-12-31 00:00:00
cve
cve
CVE-2009-3702
2009-12-22 19:30:00
packetstorm
packetstorm
PHP-Calendar 1.1 Remote/Local File Inclusion
2009-12-18 00:00:00
nvd
nvd
CVE-2009-3702
2009-12-22 19:30:00