|
Family: CGI abuses --> Category: attack
miniPortail Cookie Admin Access Vulnerability Scan
Vulnerability Scan Summary Determine if miniPortail can abused
Detailed Explanation for this Vulnerability Test
The remote host is running MiniPortal - a set of PHP
CGIs designed to manage a web portal.
This software is vulnerable to a flaw in the way it checks
if the admin user authenticated already. A possible hacker may
use this flaw to gain administrative rights on this
host without having to know the administrator password.
A possible hacker may exploit this flaw to edit the content of
the remote website.
Solution: None at this time
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|