CVE-2005-1003 Information

Description

Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers to include arbitrary PHP files via .. (dot dot) sequences in the modID parameter.

Reference

http://marc.info/?l=bugtraq&m=111264602406090&w=2 http://secunia.com/advisories/14832 http://securitytracker.com/id?1013640 https://exchange.xforce.ibmcloud.com/vulnerabilities/19954