4 matches found
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in awrate 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to 1 404.php or 2 topbar.php, different vectors than CVE-2006-6368...
CVE-2006-6368
PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php...
CVE-2006-6368
CVE-2006-6368 is a PHP remote file inclusion vulnerability affecting awrate 1.0. The initial description states that an attacker can trigger arbitrary PHP code execution by supplying a URL in the toroot parameter to login.php.inc/search.php. The connected documents also describe similar remote fi...
CVE-2006-6368
PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php...