TotalCalendar SQL Injection And Directory Traversal Vulnerabilities Network Vulnerability

Summary

This host is running TotalCalendar and is prone to SQL injection and directory traversal vulnerabilities.

Impact

Successful exploitation will allow remote attackers to execute arbitrary HTML and script code and manipulate SQL queries by injecting arbitrary SQL code in a user's browser session in context of an affected site. Impact Level: Application.

Solution

Upgrade to version 2.403 or later, For updates refer to http://www.sweetphp.com/nuke/index.php

Insight

The flaw exists due to: - An improper validation of user supplied data to 'selectedCal' parameter in a 'SwitchCal' action within the 'modfile.php' script. - An improper validation of user supplied data to 'box' parameter to script 'box_display.php'.

Affected

TotalCalendar version 2.4

References

http://en.securitylab.ru/nvd/396246.php
http://en.securitylab.ru/nvd/396247.php

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-4973, CVE-2009-4974

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

b2Evolution title SQL Injection
ATutor < 1.5.1-pl1 Multiple Flaws
Adobe ColdFusion Authentication Bypass Vulnerability
A-Blog 'sources/search.php' SQL Injection Vulnerability
Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability

TotalCalendar SQL Injection and Directory Traversal Vulnerabilities

Take action and discover your vulnerabilities