Full title: DotProject 2.1.5 SQL Injection / Cross Site Scripting 
Category: web applications
Platform: php
DotProject version 2.1.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

# 0day.today @ http://0day.today/