|
Family: CGI abuses --> Category: attack
Multiple vulnerabilities in Clever Copy Vulnerability Scan
Vulnerability Scan Summary Checks for XSS in results.php
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is affected by
multiple issues.
Description :
The remote host is running Clever Copy, a free, fully-scalable web
site portal and news posting system written in PHP
The remote version of this software contains multiple vulnerabilities
that can lead to path disclosure, cross-site scripting and
unauthorized access to private messages
See also :
http://lostmon.blogspot.com/2005/07/clever-copy-calendarphp-yr-variable.html
http://lostmon.blogspot.com/2005/07/clever-copy-path-disclosure-and-xss.html
http://lostmon.blogspot.com/2005/07/clever-copy-unauthorized-read-delete.html
Solution :
Unknown at this time.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|