Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses --> Category: infos

IlohaMail Insecure Install Vulnerability Scan

Vulnerability Scan Summary
Searches for the existence of conf/

Detailed Explanation for this Vulnerability Test

The remote host is running Ilohamail, a web-based mail interface written
in PHP.

The remote installation of this software is not configured properly,
in the sense that it allows any user to download its configuration
files by requesting one of these files :


The content of these files may contain sensitive information which may
help a possible hacker to organize better attacks against the remote host.

Solution : Prevent the download of .inc files at the web server level
Risk Factor : Medium

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.