Summary
The /cgi-bin directory is browsable.
This will show you the name of the installed common scripts and those which are written by the webmaster and thus may be exploitable.
Solution
Make the /cgi-bin non-browsable.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities
- Apache Roller 'q' Parameter Cross Site Scripting Vulnerability
- Apache Open For Business HTML injection vulnerability
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
- Apache Struts2 'XWork' Information Disclosure Vulnerability