CVE-2006-0755
CVE-2006-0755
Multiple PHP remote file include vulnerabilities in dotProject 2.0.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary commands via the baseDir parameter in (1) db_adodb.php, (2) db_connect.php, (3) session.php, (4) vw_usr_roles.php, (5) calendar.php, (6) date_format.php, and (7) tasks/gantt.php; and the dPconfig[root_dir] parameter in (8) projects/gantt.php, (9) gantt2.php, and (10) vw_files.php. NOTE: the vendor disputes this issue, stating that the product documentation clearly recommends that the system administrator disable register_globals, and that the check.php script warns against this setting. Also, the vendor says that the protection.php/siteurl vector is incorrect because protection.php does not exist in the product
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected products
n/a · n/apublic PoCs found — 10
exploitdbwww.exploit-db.com/exploits/27218unverifiedexploitdbwww.exploit-db.com/exploits/27219unverifiedexploitdbwww.exploit-db.com/exploits/27223unverifiedexploitdbwww.exploit-db.com/exploits/27224unverifiedexploitdbwww.exploit-db.com/exploits/27225unverifiedexploitdbwww.exploit-db.com/exploits/22708unverifiedexploitdbwww.exploit-db.com/exploits/27222unverifiedexploitdbwww.exploit-db.com/exploits/27217unverifiedexploitdbwww.exploit-db.com/exploits/27220unverifiedexploitdbwww.exploit-db.com/exploits/27221unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/18879https://exchange.xforce.ibmcloud.com/vulnerabilities/24738http://www.osvdb.org/23209http://www.osvdb.org/23210http://www.osvdb.org/23211http://www.osvdb.org/23212http://www.osvdb.org/23213http://www.osvdb.org/23214http://www.osvdb.org/23215http://www.osvdb.org/23216http://www.osvdb.org/23217http://www.osvdb.org/23218