TotalCalendar.Multiple.Remote.File.Inclusion
Description
PHP remote file inclusion vulnerability in (1) about.php or (2) auth.php in TotalCalendar, allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter.
Affected Products
SweetPHP TotalCalendar 0
Impact
Execute arbitrary PHP code.
Recommended Actions
Upgrade to version 2.402 :
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |