Unrated severityNVD Advisory· Published Jan 13, 2006· Updated Jun 16, 2026
CVE-2006-0206
CVE-2006-0206
Description
Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and earlier allows remote attackers to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:light_weight_calendar:light_weight_calendar:1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:light_weight_calendar:light_weight_calendar:1.0:*:*:*:*:*:*:*
- (no CPE)range: <=1.0 (20040909)
Patches
Vulnerability mechanics
References
9- evuln.com/vulns/29/exploit.htmlnvdExploit
- evuln.com/vulns/29/summary.htmlnvdExploitVendor Advisory
- secunia.com/advisories/18450nvdExploitVendor Advisory
- www.securityfocus.com/bid/16229nvdExploit
- attrition.org/pipermail/vim/2006-March/000612.htmlnvd
- www.osvdb.org/22376nvd
- www.securityfocus.com/archive/1/421920nvd
- www.vupen.com/english/advisories/2006/0171nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24110nvd
News mentions
0No linked articles in our index yet.