|
Family: CGI abuses --> Category: attack
PhpGroupWare unspecified remote file include vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for PhpGroupWare version
Detailed Explanation for this Vulnerability Test
The remote host seems to be running PhpGroupWare, is a multi-user groupware
suite written in PHP.
This version is prone to a vulnerability that may permit remote attackers,
without prior authentication, to include and execute malicious PHP scripts.
Remote users may influence URI variables to include a malicious PHP script
on a remote system, it is possible to cause arbitrary PHP code to be executed.
Solution : Update to version 0.9.14.006 or newer
See also: http://www.phpgroupware.org/
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|