CVE-2006-3316

Multiple PHP remote file inclusion vulnerabilities in phpRaid 3.0.5 allow remote attackers to execute arbitrary code via a URL in the phpraid_dir parameter to (1) logs.php and (2) users.php, a different set of vectors than CVE-2006-3116.

🔗 References (12)

• PSIRT-CNA@flexerasoftwarehttp://secunia.com/advisories/20200
• PSIRT-CNA@flexerasoftwarehttp://secunia.com/secunia_research/2006-47/advisory/
• PSIRT-CNA@flexerasoftwarehttp://www.osvdb.org/26903
• PSIRT-CNA@flexerasoftwarehttp://www.osvdb.org/26904
• PSIRT-CNA@flexerasoftwarehttp://www.securityfocus.com/bid/18719
• PSIRT-CNA@flexerasoftwarehttps://exchange.xforce.ibmcloud.com/vulnerabilities/27465
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/20200
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/secunia_research/2006-47/advisory/
• af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/26903
• af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/26904
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/18719
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/27465