Multiple PHP remote file inclusion vulnerabilities in phpRaid 3.0.5 allow remote malicious users to execute arbitrary code via a URL in the phpraid_dir parameter to (1) logs.php and (2) users.php, a different set of vectors than CVE-2006-3116.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spiffyjr phpraid 3.0.5 |