|
|
Family: CGI abuses : XSS --> Category: infos
Mambo Site Server XSS and remote arbitrary code execution Vulnerability Scan
Vulnerability Scan Summary
Determine if Mambo Site Server is vulnerable to xss attack and remote flaw
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is prone to
multiple attacks.
Description :
A possible hacker may use the installed version of Mambo Site Server to
perform a cross-site scripting attack on this host or execute
arbitrary code through the gallery image uploader under the
administrator directory.
See also :
http://www.securityfocus.com/archive/1/306206
Solution:
Unknown at this time.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
