CVE-2006-3316 Information

Description

Multiple PHP remote file inclusion vulnerabilities in phpRaid 3.0.5 allow remote attackers to execute arbitrary code via a URL in the phpraid_dir parameter to (1) logs.php and (2) users.php a different set of vectors than CVE-2006-3116.

Reference

http://secunia.com/advisories/20200 http://secunia.com/secunia_research/2006-47/advisory/ http://www.osvdb.org/26903 http://www.osvdb.org/26904 http://www.securityfocus.com/bid/18719 https://exchange.xforce.ibmcloud.com/vulnerabilities/27465