|
Family: CGI abuses --> Category: infos
EGroupWare Multiple Vulnerabilitie Vulnerability Scan
Vulnerability Scan Summary Checks for the version of EGroupWare
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is vulnerable to
multiple attacks.
Description :
The remote host is running eGroupWare, a web-based groupware solution.
It is reported that versions 1.0.0.006 and older are prone to multiple
SQL injection and cross-site scripting flaws.
See also :
http://www.gulftech.org/?node=research&article_id=00069-04202005
http://sourceforge.net/project/shownotes.php?release_id=320768
Solution :
Upgrade to eGroupWare 1.0.0.007 or later.
Risk factor:
Medium / CVSS Base Score : 5
(AV:R/AC:L/Au:NR/C:P/A:N/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|