|
Family: CGI abuses --> Category: infos
phpinfo.php Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of phpinfo.php
Detailed Explanation for this Vulnerability Test
Many PHP installation tutorials instruct the user to create
a file called phpinfo.php. This file is often times left in
the root directory after completion.
Some of the information that can be garnered from this file
includes: The username of the user who installed php, if they
are a SUDO user, the IP address of the host, the web server
version, The system version(unix / linux), and the root
directory of the web server.
Solution : remove it
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|