7.5
CVE-2006-1252
- EPSS 2.55%
- Veröffentlicht 19.03.2006 01:02:00
- Zuletzt bearbeitet 16.06.2026 22:22:18
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginEval injection vulnerability in cal.php in Light Weight Calendar (LWC) 1.0 allows remote attackers to execute arbitrary PHP code via the date parameter to index.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Light Weight Calendar ≫ Light Weight Calendar Version1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.55% | 0.83 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://attrition.org/pipermail/vim/2006-March/000612.html
http://www.securityfocus.com/bid/17059
https://www.exploit-db.com/exploits/1570