vendor:
Project Based Calendaring System
by:
milw0rm.com
7.5
CVSS
HIGH
Remote File Upload, Remote File Disclosure, File Disclosure
N/A
CWE
Product Name: Project Based Calendaring System
Affected Version From: 2000.7.1
Affected Version To: 2000.7.1
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
Project Based Calendaring System (PBCS) Version 0.7.1 Multiple Vulnerabilities
PBCS Version 0.7.1 is vulnerable to Remote File Upload, Remote File Disclosure, and File Disclosure. An attacker can exploit these vulnerabilities to upload malicious files, disclose sensitive information, and gain access to the system.
Mitigation:
Update to the latest version of PBCS