NuytsTech Security

CVE-2006-1922

by ·

PHP remote file inclusion vulnerability in (1) about.php or (2) auth.php in TotalCalendar allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter.

Date published : 2006-04-20

http://www.securityfocus.com/bid/17618

http://pridels0.blogspot.com/2006/04/totalcalendar-remote-code-execution.html

Tags: