VULHUB ™

myPHPCalendar has been reported prone to multiple file include vulnerabilities. These issues present themselves due to a lack of sufficient sanitization performed on user-supplied values for the 'cal_dir' URI parameter. A remote attacker may exploit these conditions to include arbitrary external PHP scripts and have the code contained executed in the context of the web server.

myPHPCalendar has been reported prone to multiple file include vulnerabilities. These issues present themselves due to a lack of sufficient sanitization performed on user-supplied values for the 'cal_dir' URI parameter. A remote attacker may exploit these conditions to include arbitrary external PHP scripts and have the code contained executed in the context of the web server.