Arbitrary PHP File Inclusion Vulnerability in ProfitCode PayProCart 3.0

Arbitrary PHP File Inclusion Vulnerability in ProfitCode PayProCart 3.0

CVE-2005-1003 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers to include arbitrary PHP files via .. (dot dot) sequences in the modID parameter.

Learn more about our Web Application Penetration Testing UK.