VYPR

Awrate

by Awrate

CVEs (2)

  • CVE-2006-6368Dec 7, 2006
    risk 0.03cvss epss 0.03

    PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php.

  • CVE-2007-5599Oct 19, 2007
    risk 0.00cvss epss 0.01

    Multiple PHP remote file inclusion vulnerabilities in awrate 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to (1) 404.php or (2) topbar.php, different vectors than CVE-2006-6368.