|
Family: CGI abuses --> Category: infos
ezPublish config disclosure Vulnerability Scan
Vulnerability Scan Summary Determine if ezPublish config file can be retrieved
Detailed Explanation for this Vulnerability Test
ezPublish (a content management system) is installed on the remote host.
A possible hacker may retrieve the file 'settings/site.ini' and gather
interesting information about the remote host, as it contains the
configuration of ezPublish.
Solution : Prevent the download of .ini files from your web server
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|