CVE-2006-6368

Publication date

2006-12-07 11:00:00

Family

mitre

State

PUBLISHED

Description

PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php.