PhpGroupWare Main Screen Message Script Injection Flaw Network Vulnerability

Summary

The remote host seems to be running PhpGroupWare, is a multi-user groupware suite written in PHP. This version is vulnerable to script injection, a malicious admin can inject script code into the main screen message.

Solution

Update to version 0.9.16.007 or newer.

References

http://www.phpgroupware.org/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability
AN Guestbook Local File Inclusion Vulnerability
Apache OFBiz Multiple Cross Site Scripting Vulnerabilities
Apache Web Server ETag Header Information Disclosure Weakness
Apache ActiveMQ Multiple Vulnerabilities

Take action and discover your vulnerabilities