Vulnerabilities for Guest cal (...) - CXSECURITY.COM

Vulnerabilities for 'Guest cal'

2009-04-17

CVE-2009-1319

CWE-22

Directory traversal vulnerability in includes/ini.inc.php in GuestCal 2.1 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the lang parameter to index.php.

Copyright 2024, cxsecurity.com