foxweb CGI

The foxweb.dll or foxweb.exe CGI is installed. Versions 2.5 and below of this CGI program have a security flaw that lets an attacker execute arbitrary code on the remote server. Since OpenVAS just verified the presence of the CGI but could not check the version number, this might be a false alarm...

SQLQHit Directory Structure Disclosure

The Sample SQL Query CGI is present. The sample allows anyone to structure a certain query that would retrieve the content of directories present on the local server. OpenVAS Vulnerability Test $Id: sqlqhitinformationdisclosure.nasl 5786 2017-03-30 10:08:58Z cfi $ Description: SQLQHit Directory...

SunSolve CD CGI user input validation

Sunsolve CD CGI scripts does not validate user input. Crackers may use them to execute some commands on your system. Note: OpenVAS did not try to perform the attack. OpenVAS Vulnerability Test $Id: sscdinput.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: SunSolve CD CGI user input validatio...

OmniPro HTTPd 2.08 scripts source full disclosure

OmniPro HTTPd 2.08 suffers from a security vulnerability that permits malicious users to get the full source code of scripting files. By appending an ASCII/Unicode space char '%20' at the script suffix, the web server will no longer interpret it and rather send it back clearly as a simple documen...

cgi.rb

The 'cgi.rb' CGI is installed. Some versions is vulnerable to remote denial of service. By sending a specially crafted HTTP POST request, a malicious user can force the remote host to consume a large amount of CPU ressources. Warning : OpenVAS solely relied on the presence of this CGI, it did not...

FAQManager Arbitrary File Reading Vulnerability

FAQManager is a Perl-based CGI for maintaining a list of Frequently asked Questions. Due to poor input validation it is possible to use this CGI to view arbitrary files on the web server. For example: http://www.someserver.com/cgi-bin/faqmanager.cgi?toc=/etc/passwd%00 OpenVAS Vulnerability Test...

CVSTrac chdir() chroot jail escape

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to the chdir function that may allow an attacker to escape the chroot jail. An attacker, exploiting this flaw, would be able to access files outside of the web...

BasiliX Attachment Disclosure Vulnerability

The remote web server contains a series of PHP scripts that are prone to information disclosure. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions save attachments by default under '/tmp/BasiliX', which is world-readable and apparently never empti...

CVSTrac filediff vulnerability

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version of filediff has a flaw in the input sanitation which, when exploited, can lead to a remote attacker executing arbitrary commands on the system. OpenVAS has determined the vulnerability...

ibillpm.pl

The 'ibillpm.pl' CGI is installed. Some versions of this CGI use a weak password management system that can be brute-forced. No flaw was tested. Your script might be a safe version. Solutions : upgrade the script if possible. If not: 1 Move the script elsewhere security through obscurity 2 Reques...

CVSTrac timeline.c timeline_page function overflow

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to the timelinepage function in timeline.c that may allow an attacker to cause a buffer overflow. An attacker, exploiting this flaw, would be potentially able t...

guestbook.cgi

The 'guestbook.cgi' is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon root or nobody. OpenVAS Vulnerability Test $Id: guestbook.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: guestbook.cgi Authors: Mathie...

formmail.pl

The SPDX-FileCopyrightText: 2005 Mathieu Perrin Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.10076";...

Linksys Wireless Internet Camera File Disclosure

The Linksys Wireless Internet Camera contains a CGI that allows remote attackers to disclosue sensitive files stored on the server. An attacker may use this CGI to disclosue the password file and from it the password used by the root use the MD5 value. OpenVAS Vulnerability Test $Id:...

CVSTrac CVSROOT/passwd arbitrary account deletion

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version of CVSTRAC is vulnerable to a flaw wherein a remote attacker can overwrite a critical file, thereby giving them elevated access and potentially control over other user accounts...

eXtropia Web Store Remote File Retrieval Vulnerability - Active Check

eXtropia SPDX-FileCopyrightText: 2000 Thomas Reinke Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.10532";...

Savant original form CGI access

A security vulnerability in the Savant web server allows attackers to download the original form of CGIsunprocessed. This would allow them to see any sensitive information stored inside those CGIs. SPDX-FileCopyrightText: 2001 SecuriTeam Some text descriptions might be excerpted from a referenced...

cgi.rb

The SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.15710";...

TalentSoft Web+ Version Report

This plug-in detects the version of Web+ CGI. The Web+ CGI has a known vulnerability that enables a remote attacker to gain access to local files. This test in itself does not verify the vulnerability but rather tries to discover the version of Web+ which is installed. SPDX-FileCopyrightText: 200...

readmsg.php detection

/base/webmail/readmsg.php was detected. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.11073";...