Full title: ProjectPier 0.8.8 SQL Injection / Authentication Bypass / RFI Vulnerabilities Category: web applications Platform: php ProjectPier versions 0.8.8 and below suffer from remote file inclusion, authentication bypass, remote shell upload, and remote SQL injection vulnerabilities. # 0day.today @ http://0day.today/