|
Family: CGI abuses --> Category: infos
phpGedView arbitrary file reading Vulnerability Scan
Vulnerability Scan Summary Checks Aprox Portal
Detailed Explanation for this Vulnerability Test
The remote host is running phpGedView - a set of CGIs written in PHP designed
to do web-based genealogy.
There is a bug in this software which may allow a possible hacker to read
arbitary files on the remote web server with the rights of the
web user. Another bug may also allow a possible hacker to include arbitrary PHP
files hosted on a third-party web site.
Solution : Upgrade to the latest version of phpGedView or disable this software
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|