[VIM] Ltwcalendar 4.1.3 version - Remote File Include Vulnerabilities

Steven M. Christey coley at mitre.org
Thu Jun 15 02:40:24 EDT 2006

Ref - bugtraq post as above.

researcher - SpC-x

the claimed affected version 4.1.3 has calendar.php:


and - are you sitting down? - ltw_config.php says:

  $ltw_config['include_dir']	= './private';

- Steve

More information about the VIM mailing list