Family: CGI abuses : XSS --> Category: attack
PhpGroupWare XSS and SQL injection issues Vulnerability Scan
Vulnerability Scan Summary
Checks the version of phpGroupWare
Detailed Explanation for this Vulnerability Test
The remote host seems to be running PhpGroupWare, is a multi-user
groupware suite written in PHP.
The remote version of this software is vulnerable to two issues :
- A cross site scripting issue may allow a possible hacker to steal the
credentials of third-party users of the remote host
- A SQL injection vulnerability may allow a possible hacker to execute
arbitrary SQL statements against the remote database.
Solution : Update to the newest version of this software
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.