Secunia Security Advisory – Justin C. Klein Keane has discovered some vulnerabilities in dotProject, which can be exploited by malicious users to conduct SQL injection and script insertion attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85211/sa38046.txt
Source: https://packetstormsecurity.com/files/85211/Secunia-Security-Advisory-38046.html