|
Family: CGI abuses --> Category: attack
Multiple Vulnerabilities in paFileDB 3.1 and older Vulnerability Scan
Vulnerability Scan Summary Checks for multiple vulnerabilities in paFileDB 3.1 and Older
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is affected by
multiple vulnerabilities.
Description :
The remote host is running a version of paFileDB that is prone to a
wide variety of vulnerabilities, including arbitrary file uploads,
local file inclusion, SQL injection, and cross-site scripting issues.
See also :
http://marc.theaimsgroup.com/?l=bugtraq&m=110720365923818&w=2
Solution :
Upgrade to the latest version from PHP Arena. Note that fix released
31-Mar-2005 does not change the version number.
Threat Level:
Medium / CVSS Base Score : 6
(AV:R/AC:H/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|