|
Family: CGI abuses : XSS --> Category: infos
Faq-O-Matic fom.cgi XSS Vulnerability Scan
Vulnerability Scan Summary Checks Faq-O-Matic XSS
Detailed Explanation for this Vulnerability Test
The remote host runs Faq-O-Matic, a CGI-based system that automates
the process of maintaining a FAQ.
The remote version of this software is vulnerable to cross-site scripting
attacks in the script 'fom.cgi'.
With a specially crafted URL, a possible hacker can cause arbitrary code
execution resulting in a loss of integrity.
Solution: Upgrade to the latest version of this software
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|