CVE-2006-3317
published 2006-06-29CVE-2006-3317: PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote attackers to execute arbitrary code via a URL in the phpraid_dir parameter to (1)…
PriorityP337medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
16.79%
96.6th percentile
PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote attackers to execute arbitrary code via a URL in the phpraid_dir parameter to (1) announcements.php and (2) rss.php, a different set of vectors and affected versions than CVE-2006-3316 and CVE-2006-3116.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| spiffyjr | phpraid | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0824.htmlhttp://secunia.com/advisories/20865http://secunia.com/secunia_research/2006-47/advisory/http://securityreason.com/securityalert/1173http://www.osvdb.org/26888http://www.osvdb.org/26889http://www.phpraider.com/index.php?action=tpmod%3Bdl=item10http://www.securityfocus.com/archive/1/438706/100/0/threadedhttp://www.securityfocus.com/bid/18719http://www.securityfocus.com/bid/23066http://www.vupen.com/english/advisories/2006/2593https://exchange.xforce.ibmcloud.com/vulnerabilities/27462https://exchange.xforce.ibmcloud.com/vulnerabilities/33100https://www.exploit-db.com/exploits/3528http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0824.htmlhttp://secunia.com/advisories/20865http://secunia.com/secunia_research/2006-47/advisory/http://securityreason.com/securityalert/1173http://www.osvdb.org/26888http://www.osvdb.org/26889http://www.phpraider.com/index.php?action=tpmod%3Bdl=item10http://www.securityfocus.com/archive/1/438706/100/0/threadedhttp://www.securityfocus.com/bid/18719http://www.securityfocus.com/bid/23066http://www.vupen.com/english/advisories/2006/2593https://exchange.xforce.ibmcloud.com/vulnerabilities/27462https://exchange.xforce.ibmcloud.com/vulnerabilities/33100https://www.exploit-db.com/exploits/3528
2006-06-29
Published