Family: CGI abuses --> Category: infos
YaBB Information Disclosure Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of YaBB.pl
Detailed Explanation for this Vulnerability Test
The remote web server contains a CGI script that suffers from an
information disclosure vulnerability.
The 'YaBB.pl' CGI script is installed on the remote host. This script
has a well documented security flaw that lets a possible hacker read arbitrary
files with the rights of the http daemon (usually root or nobody).
See also :
Remove 'YaBB.pl' or upgrade to the latest version.
Medium / CVSS Base Score : 4
Click HERE for more information and discussions on this network vulnerability scan.