|
Family: CGI abuses --> Category: infos
HappyMall Command Execution Vulnerability Scan
Vulnerability Scan Summary Checks for HappyMall
Detailed Explanation for this Vulnerability Test
The remote host is running the HappyMall E-Commerce CGI suite.
There is a flaw in this suite which allows a possible hacker to execute
arbitrary commands with the rights of the HTTP daemon (typically
root or nobody), by making a request like :
/shop/normal_html.cgi?file=|id|
Solution : Upgrade to the newest version of this CGI
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|