CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Softcomplex: >> Php Event Calendar >> 1.4 Security Vulnerabilities

CVE-2006-3684

PHP remote file inclusion vulnerability in calendar.php in SoftComplex PHP Event Calendar 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_calendar parameter, which overwrites the $path_to_calendar variable from an extract function call.

CVSS Score

7.5

EPSS Score

0.012

Published

2006-07-21

Page 1

Vulnerabilities

Vulnerable Software

Softcomplex: >> Php Event Calendar >> 1.4 Security Vulnerabilities

Products

Pricing

Contact Us