Family: CGI abuses --> Category: infos
iXmail SQL injection Vulnerability Scan
Vulnerability Scan Summary
Checks for iXMail
Detailed Explanation for this Vulnerability Test
The remote host is running the iXmail webmail interface.
There is a flaw in this interface which allows a possible hacker
to log in as any user by using a SQL injection flaw in the
code of index.php.
A possible hacker may use this flaw to gain unauthorized access on
this host, or to gain the control of the remote database.
Solution : Upgrade to iXMail 0.4
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.