CVE-2007-2049 | Mambo Calendar 1.5.5 mod_calendar.php com_calendar.php absolute_path file inclusion (EDB-3713 / BID-23435)

A vulnerability was found in Mambo Calendar 1.5.5. It has been declared as critical. This vulnerability affects unknown code of the file com_calendar.php of the component mod_calendar.php. The manipulation of the argument absolute_path leads to file inclusion.

This vulnerability was named CVE-2007-2049. The attack can be initiated remotely. Furthermore, there is an exploit available.