2020-01-27 14:39:11
mitre
PUBLISHED
install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.