The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of service (crash) via a long year parameter.
References
Configurations
History
20 Nov 2024, 23:45
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=106062021711496&w=2 - | |
References | () http://marc.info/?l=bugtraq&m=106252188522715&w=2 - |
Information
Published : 2003-10-20 04:00
Updated : 2024-11-20 23:45
NVD link : CVE-2003-0738
Mitre link : CVE-2003-0738
CVE.ORG link : CVE-2003-0738
JSON object : View
Products Affected
phpwebsite
- phpwebsite
CWE
CWE-134
Use of Externally-Controlled Format String