kevin mitnick

1 exploit Active since Oct 2008
CVE-2008-4673 EXPLOITDB text WORKING POC
Events Calendar 1.1 - Remote Code Execution via path[docroot] or component Parameter
PHP remote file inclusion vulnerability in panel/common/theme/default/header_setup.php in WebBiscuits Software Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the (1) path[docroot] and (2) component parameters.