install.php in JCE-Tech PHP Calendars, downloaded 20100121, allows remote malicious users to bypass intended access restrictions and modify application settings via a direct request. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jce-tech php calendars script |