Threat Encyclopedia

Project.Pier.patch.PHP.id.Parameter.Remote.File.Inclusion

description-logoDescription

This indicates an attack attempt against an Remote File Inclusion vulnerability in Project Pier.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can include arbitrary files and execute it within the context of the application.

affected-products-logoAffected Products

ProjectPier 0.8.8

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

CVE References

CVE-2018-10759