Family: CGI abuses --> Category: infos
CuteNews Debug Info Disclosure Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of cutenews
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is prone to information
There is a bug in the remote version of CuteNews that allows a possible hacker
to obtain information from a call to the phpinfo() PHP function such as
the username of the user who installed php, if they are a SUDO user, the
IP address of the host, the web server version, the system version (unix
/ linux), and the root directory of the web server.
See also :
Disable CuteNews or upgrade to the newest version.
Low / CVSS Base Score : 2
Click HERE for more information and discussions on this network vulnerability scan.