CVE-2007-1483

NONE
Published Mar 16, 200719y ago · Modified Jun 16, 20262w ago
Find Similar
Published Mar 16, 2007 19y ago
Last Modified Jun 16, 2026 2w ago

Description

Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote attackers to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 1

VendorProductVersionRange
k5nwebcalendar0.9.45any

References 7

Remediation