Vulnerabilities > CVE-2006-1291 - Unspecified vulnerability in PHP Icalendar PHP Icalendar
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and earlier does not require authentication for write access to the calendars directory, which allows remote attackers to upload and execute arbitrary PHP scripts via a WebDAV PUT request with a filename containing a .php extension and a trailing null character.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 7 |
Exploit-Db
| description | php iCalendar <= 2.21 (publish.ical.php) Remote Code Execution Exploit. CVE-2006-1291. Webapps exploit for php platform |
| file | exploits/php/webapps/1586.php |
| id | EDB-ID:1586 |
| last seen | 2016-01-31 |
| modified | 2006-03-15 |
| platform | php |
| port | |
| published | 2006-03-15 |
| reporter | rgod |
| source | https://www.exploit-db.com/download/1586/ |
| title | php iCalendar <= 2.21 publish.ical.php Remote Code Execution Exploit |
| type | webapps |
Nessus
| NASL family | CGI abuses |
| NASL id | PHPICALENDAR_ICAL_FILE_UPLOAD.NASL |
| description | The remote host appears to be running PHP iCalendar, a web-based iCal file viewer / parser written in PHP. The installed version of PHP iCalendar supports iCal publishing but does not properly restrict the types of files uploaded and places them in a web-accessible directory. An unauthenticated attacker can leverage this issue to upload files with arbitrary PHP code and then run that code subject to the privileges of the web server user id. Note that successful exploitation of this issue requires that |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 21091 |
| published | 2006-03-17 |
| reporter | This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/21091 |
| title | PHP iCalendar publish.ical.php Arbitrary File Upload |