2005-07-14 04:00:00
mitre
PUBLISHED
WebCalendar 0.9.34 and earlier with browsing in includes directory enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root.