First published: Mon Apr 16 2007(Updated: )
Multiple PHP remote file inclusion vulnerabilities in the Calendar Module (com_calendar) 1.5.5 for Mambo allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) com_calendar.php or (2) mod_calendar.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mambo Mambo Calendar | =1.5.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.