Family: CGI abuses --> Category: infos
PDGSoft Shopping cart vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for PDGSoft Shopping cart executables
Detailed Explanation for this Vulnerability Test
The executables 'redirect.exe' and/or 'changepw.exe' exist on this webserver.
Some versions of these files are vulnerable to remote exploit.
A possible hacker can use this hole to gain access to confidential data
or escalate their rights on the web server.
*** As Nessus solely relied on the existence of the redirect.exe or changepw.exe files,
*** this might be a false positive
Solution : remove them from cgi-bin or scripts folder.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.