Summary
This plug-in detects the version of Web+ CGI. The Web+ CGI has a known vulnerability that enables a remote attacker to gain access to local files.
This bug is known to exist in Web+ 4.X as of March 1999, and probably exists in all previous versions as well.
This test in itself does not verify the vulnerability but rather tries to discover the version of Web+ which is installed.
Severity
Classification
-
CVSS Base Score: 3.3
AV:L/AC:M/Au:N/C:N/I:P/A:P
Related Vulnerabilities
- MODx Local File Include and Cross Site Scripting Vulnerabilities
- OTRS Event Notification Information Disclosure Vulnerability
- PhreeBooks Multiple Remote Vulnerabilities
- Novatel Wireless MiFi 2352 Password Information Disclosure Vulnerability
- IBM WebSphere Application Server SIP Logging Information Disclosure Vulnerability