Sambar default CGI info disclosure High Medium Low Network Vulnerabilities Web application abuses Sambar default CGI info disclosure SummaryThe remote web server is running two CGIs (environ.pl and testcgi.exe) which, by default, disclose a lot of information about the remote host (such as the physical path to the CGIs on the remote filesystem). SolutionDelete these two CGIs Severity Classification CVSS Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P Related Vulnerabilities AjaXplorer Remote Command Injection and Local File Disclosure VulnerabilitiesAlienForm CGI scriptAjaXplorer 'doc_file' Parameter Local File Disclosure VulnerabilityAdobe BlazeDS XML and XML External Entity Injection VulnerabilitiesAdobe ColdFusion Multiple Vulnerabilities-03 May-2014