cpe:/a:guestcal:guest_cal:2.1 CVE-2009-1319 2009-04-17T10:08:52.017-04:00 2017-09-28T21:34:18.437-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-04-17T10:33:00.000-04:00 BID 34519 SECUNIA 34721 EXPLOIT-DB 8431 Directory traversal vulnerability in includes/ini.inc.php in GuestCal 2.1 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the lang parameter to index.php.