cleantalk
Vulnerabilities and Security Researches

VR Calendar, CVE-2024-44013

CVE, Research URL

CVE-2024-44013

Home page URL

Security reports for VR Calendar

Application

VR Calendar

Published on
Oct 05, 2024
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Innate Images LLC VR Calendar allows PHP Local File Inclusion.This issue affects VR Calendar: from n/a through 2.4.0.
Affected versions
Min -, max 2.4.5.
Status
vulnerable
Previous vulnerability researches
VR Calendar (CVE-2024-44013) , Sep 28, 2024
VR Calendar (CVE-2025-5936) , Jun 29, 2025
VR Calendar (CVE-2022-2314) , Jun 07, 2024
VR Calendar (CVE-2022-3852) , Jun 07, 2024
New vulnerability
tarteaucitron.js – Cookies legislation & GDPR (CVE-2025-4955) , Jun 30, 2025
Tournament Bracket Generator (CVE-2025-6290) , Jun 29, 2025
VR Calendar (CVE-2025-5936) , Jun 29, 2025
Abandoned Contact Form 7 (CVE-2025-52817) , Jun 29, 2025
Simple Payment (CVE-2025-6688) , Jun 29, 2025