VYPR
Unrated severityNVD Advisory· Published Oct 22, 2008· Updated Jun 16, 2026

CVE-2008-4673

CVE-2008-4673

Description

PHP remote file inclusion vulnerability in panel/common/theme/default/header_setup.php in WebBiscuits Software Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the (1) path[docroot] and (2) component parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:webbiscuits:events_calendar:1.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:webbiscuits:events_calendar:1.1:*:*:*:*:*:*:*
    • (no CPE)range: = 1.1

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.