Family: CGI abuses --> Category: attack
SimpleBBS users disclosure Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of users.php
Detailed Explanation for this Vulnerability Test
It is possible to make the remote host enumerate its list
of SimpleBBS users by requesting the file users.php.
A possible hacker may use this flaw to gain the passwords of the users
and impersonate them.
Solution : Disable this CGI
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.