NuytsTech Security

CVE-2006-6368

by ·

PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php.

Date published : 2006-12-07

http://www.securityfocus.com/bid/21407

https://www.exploit-db.com/exploits/2884

Tags: