Eval injection vulnerability in cal.php in Light Weight Calendar (LWC) 1.0 allows remote attackers to execute arbitrary PHP code via the date parameter to index.php.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Light_weight_calendar | Light_weight_calendar | 1.0 (including) | 1.0 (including) |