Arbitrary Code Execution via PHP Remote File Inclusion in EasyPHPCalendar 6.1.5 and Earlier

Arbitrary Code Execution via PHP Remote File Inclusion in EasyPHPCalendar 6.1.5 and Earlier

CVE-2005-2155 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in EasyPHPCalendar 6.1.5 and earlier allows remote attackers to execute arbitrary code via the serverPath parameter.

Learn more about our Cis Benchmark Audit For Server Software.