CVE-2007-5642

Name of the Vulnerable Software and Affected Versions PHP Project Management versions 0.8.10 and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in various parameters. This can be achieved through the def lang parameter to "modules/files/list.php", the m path parameter to "modules/projects/summary.inc.php" or "modules/tasks/summary.inc.php", the module parameter to "modules/projects/list.php", or the module parameter to "index.php" in multiple subdirectories of "modules/", including certinfo, emails, events, fax, files, groupadm, history, info, log, mail, messages, organizations, phones, presence, projects, reports, search, snf, syslog, tasks, or useradm.

Recommendations For PHP Project Management versions 0.8.10 and earlier, consider disabling the vulnerable parameters, such as def lang and m path, until a patch is available. Restrict access to the affected modules, including certinfo, emails, events, fax, files, groupadm, history, info, log, mail, messages, organizations, phones, presence, projects, reports, search, snf, syslog, tasks, or useradm, to minimize the risk of exploitation. Avoid using the module parameter in the affected API endpoints until the issue is resolved.