CVE-2006-3041 Information

Feb 14, 2021 cve

Description

LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks PHP remote file inclusion vulnerability in Ltwcalendar/calendar.php in Codewalkers Ltwcalendar 4.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the ltw_config[include_dir] parameter. NOTE: CVE disputes this claim since the $ltw_config[include_dir] variable is defined as a static value in an include file before it is referenced in an include() statement.

Reference

http://securityreason.com/securityalert/1099 http://www.attrition.org/pipermail/vim/2006-June/000866.html http://www.osvdb.org/27452 http://www.securityfocus.com/archive/1/436996/100/0/threaded

Share on: