ID de Prueba:	1.3.6.1.4.1.25623.1.0.16071
Categoría:	CGI abuses
Título:	PHPCalendar Remote File Include Vulnerability
Resumen:	NOSUMMARY
Descripción:	Description: The remote web server is running PHPCalendar, a web based calendar written in PHP. The remote version of this software is vulnerable to a file inclusion flaw which may allow an attacker to execute arbitrary PHP commands on the remote host. Solution : Upgrade the newest version of this software Risk factor : High
Referencia Cruzada:	BugTraq ID: 12127 Common Vulnerability Exposure (CVE) ID: CVE-2004-1423 http://www.securityfocus.com/bid/12127 BugTraq ID: 20657 http://www.securityfocus.com/bid/20657 Bugtraq: 20041229 php-Calendar File Include Vulnerability [ Command Exec ] (Google Search) http://marc.info/?l=bugtraq&m=110434580716205&w=2 Bugtraq: 20061021 Virtual Law Office (phpc_root_path) Remote File Include Vulnerability (Google Search) http://www.securityfocus.com/archive/1/449397/100/0/threaded https://www.exploit-db.com/exploits/2608 http://www.gulftech.org/?node=research&article_id=00060-12292004 http://securitytracker.com/id?1017107 http://secunia.com/advisories/22516 http://www.vupen.com/english/advisories/2006/4145 XForce ISS Database: php-calendar-file-include(18710) https://exchange.xforce.ibmcloud.com/vulnerabilities/18710 XForce ISS Database: vlo-phpcrootpath-file-include(29710) https://exchange.xforce.ibmcloud.com/vulnerabilities/29710
Copyright	This script is Copyright (C) 2004 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.