|
Family: CGI abuses : XSS --> Category: infos
Tutos SQL injection and Cross Site Scripting Issues Vulnerability Scan
Vulnerability Scan Summary Checks the version of Tutos
Detailed Explanation for this Vulnerability Test
The remote host is running Tutos, an open-source team organization software
package written in PHP.
The remote version of this software is vulnerable to multiple input validation
flaws which may allow an authenticated user to perform a cross site scripting
attack or a SQL injection against the remote service.
Solution : Upgrade to Tutos-1.2 or newer
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|