VULHUB ™

PHProjekt is a freely available, open source PHP Groupware package. It is actively maintained by the PHPProjekt Development Team. It will run on most Linux and Unix variants, in addition to Microsoft Windows operating systems. It has been reported that an attacker may trick the PHProjekt upload functions into reading local files on the host running the vulnerable software. This is due to insufficient validation of variables associated with the upload functions. This may be exploited by the attacker to display the contents of arbitrary web-readable files.

PHProjekt is a freely available, open source PHP Groupware package. It is actively maintained by the PHPProjekt Development Team. It will run on most Linux and Unix variants, in addition to Microsoft Windows operating systems. It has been reported that an attacker may trick the PHProjekt upload functions into reading local files on the host running the vulnerable software. This is due to insufficient validation of variables associated with the upload functions. This may be exploited by the attacker to display the contents of arbitrary web-readable files.