Vulnerabilities (CVE)

Filtered by vendor Fullrevolution Subscribe
Filtered by product Aspwebcalendar2008
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2832 1 Fullrevolution 1 Aspwebcalendar2008 2024-11-21 10.0 HIGH N/A
Unrestricted file upload vulnerability in calendar_admin.asp in Full Revolution aspWebCalendar 2008 allows remote attackers to upload and execute arbitrary code via the FILE1 parameter in an uploadfileprocess action, probably followed by a direct request to the file in calendar/eventimages/.