Anfälligkeitssuche        Suche in 191973 CVE Beschreibungen
und 86218 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.56843
Kategorie:CGI abuses : XSS
Titel:PHPsysInfo Multiple Vulnerabilities
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is running phpSysInfo, which according to its version
number, is vulnerable to a number of cross site scripting vulnerabilites
as well as an HTTP response-splitting vulnerability.

Versions prior to 2.4 are vulnerable.

Solution : Upgrade to a later version.

Risk factor : Medium

CVSS Score:
4.3

Querverweis: BugTraq ID: 12887
BugTraq ID: 15396
Common Vulnerability Exposure (CVE) ID: CVE-2005-3348
http://www.securityfocus.com/bid/15396
BugTraq ID: 15414
http://www.securityfocus.com/bid/15414
Bugtraq: 20051115 Advisory 22/2005: Multiple vulnerabilities in phpSysInfo (Google Search)
http://www.securityfocus.com/archive/1/416543
Debian Security Information: DSA-897 (Google Search)
http://www.debian.org/security/2005/dsa-897
Debian Security Information: DSA-898 (Google Search)
http://www.debian.org/security/2005/dsa-898
Debian Security Information: DSA-899 (Google Search)
http://www.debian.org/security/2005/dsa-899
http://www.gentoo.org/security/en/glsa/glsa-200511-18.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:212
http://www.hardened-php.net/advisory_212005.81.html
http://secunia.com/advisories/17441
http://secunia.com/advisories/17570
http://secunia.com/advisories/17584
http://secunia.com/advisories/17616
http://secunia.com/advisories/17620
http://secunia.com/advisories/17643
http://secunia.com/advisories/17698
XForce ISS Database: phpsysinfo-registerglobal-data-manipulation(23107)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23107
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 86218 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.