CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5968

Directory traversal vulnerability in print.php in PHP iCalendar 2.24 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cookie_language parameter in a phpicalendar_* cookie, a different vector than CVE-2006-1292.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.8%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2008-5968

Phpicalendar » Phpicalendar » Version: Any

cpe:2.3:a:phpicalendar:phpicalendar:*
Phpicalendar » Phpicalendar » Version: 0.7

cpe:2.3:a:phpicalendar:phpicalendar:0.7
Phpicalendar » Phpicalendar » Version: 0.8

cpe:2.3:a:phpicalendar:phpicalendar:0.8
Phpicalendar » Phpicalendar » Version: 0.9

cpe:2.3:a:phpicalendar:phpicalendar:0.9
Phpicalendar » Phpicalendar » Version: 0.9.5

cpe:2.3:a:phpicalendar:phpicalendar:0.9.5
Phpicalendar » Phpicalendar » Version: 1.0

cpe:2.3:a:phpicalendar:phpicalendar:1.0
Phpicalendar » Phpicalendar » Version: 1.1

cpe:2.3:a:phpicalendar:phpicalendar:1.1
Phpicalendar » Phpicalendar » Version: 2.0

cpe:2.3:a:phpicalendar:phpicalendar:2.0
Phpicalendar » Phpicalendar » Version: 2.0.1

cpe:2.3:a:phpicalendar:phpicalendar:2.0.1
Phpicalendar » Phpicalendar » Version: 2.0c

cpe:2.3:a:phpicalendar:phpicalendar:2.0c
Phpicalendar » Phpicalendar » Version: 2.1

cpe:2.3:a:phpicalendar:phpicalendar:2.1
Phpicalendar » Phpicalendar » Version: 2.2

cpe:2.3:a:phpicalendar:phpicalendar:2.2
Phpicalendar » Phpicalendar » Version: 2.21

cpe:2.3:a:phpicalendar:phpicalendar:2.21
Phpicalendar » Phpicalendar » Version: 2.22

cpe:2.3:a:phpicalendar:phpicalendar:2.22
Phpicalendar » Phpicalendar » Version: 2.23

cpe:2.3:a:phpicalendar:phpicalendar:2.23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5968

Products

Pricing

Contact Us