|
Family: CGI abuses --> Category: infos
TalentSoft Web+ Input Validation Bug Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks if webplus reads any file
Detailed Explanation for this Vulnerability Test
The 'webplus' CGI allows a possible hacker
to view any file on the target computer by requesting :
GET /cgi-bin/webplus?script=/../../../../etc/passwd
Solution : remove it
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|