VULHUB ™

dotproject is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. Under some circumstances, it is possible for a remote attacker to influence the include path of a script to point to an external file on a remote server. If the remote file is a malicious PHP script, This may be exploited to execute arbitrary commands in the context of the webserver.

dotproject is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. Under some circumstances, it is possible for a remote attacker to influence the include path of a script to point to an external file on a remote server. If the remote file is a malicious PHP script, This may be exploited to execute arbitrary commands in the context of the webserver.