Summary
The host is installed with DotNetNuke and is prone to Information Disclosure vulnerability.
Impact
Successful exploitation could allow remote attackers to view the install wizard page and obtain sensitive information.
Impact Level: Application
Solution
Upgrade to DotNetNuke version 4.9.0/5.0.1 or latest For updates refer to http://www.dotnetnuke.com/
Insight
An unspecified vulnerability in DotNetNuke which could allow a remote attackers to gain unauthorised information.
Affected
DotNetNuke versions 4.0 to 4.8.4 and 5.0
References
Severity
Classification
-
CVE CVE-2008-7101 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Ampache Reflected Cross Site Scripting Vulnerability
- Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability
- Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
- Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability
- Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities