Description
PHP remote file inclusion vulnerability in EasyPHPCalendar 6.1.5 and earlier allows remote attackers to execute arbitrary code via the serverPath parameter.
Exploits (5)
exploitdb
WRITEUP
VERIFIED
by Albania Security Clan · textwebappsphp
https://www.exploit-db.com/exploits/25932
exploitdb
WRITEUP
VERIFIED
by Albania Security Clan · textwebappsphp
https://www.exploit-db.com/exploits/25929
exploitdb
WRITEUP
VERIFIED
by Albania Security Clan · textwebappsphp
https://www.exploit-db.com/exploits/25930
exploitdb
WRITEUP
VERIFIED
by Albania Security Clan · textwebappsphp
https://www.exploit-db.com/exploits/25931
exploitdb
WRITEUP
VERIFIED
by Albania Security Clan · textwebappsphp
https://www.exploit-db.com/exploits/25928
References (1)
Core 1
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/15893
Scores
EPSS
0.0211
EPSS Percentile
84.2%
Details
Status
published
Products (1)
easyphpcalendar/easyphpcalendar
6.1.5
Published
Jul 06, 2005
Tracked Since
Feb 18, 2026