CVE-2006-0206

N/A Unknown

Published: January 13, 2006 Modified: April 16, 2026

Description

Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and earlier allows remote attackers to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://attrition.org/pipermail/vim/2006-March/000612.html

Source: cve@mitre.org

http://evuln.com/vulns/29/exploit.html

Source: cve@mitre.org

Exploit

http://evuln.com/vulns/29/summary.html

Source: cve@mitre.org

Exploit Vendor Advisory

http://secunia.com/advisories/18450

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.osvdb.org/22376

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/421920

Source: cve@mitre.org

http://www.securityfocus.com/bid/16229

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2006/0171

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/24110

Source: cve@mitre.org

http://attrition.org/pipermail/vim/2006-March/000612.html