Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> File Inclusion Vulnerability in Jaws


Vulnerability Assessment Details

File Inclusion Vulnerability in Jaws

Vulnerability Assessment Summary
Detect Jaws File Inclusion Vulnerability

Detailed Explanation for this Vulnerability Assessment

The remote host is running JAWS, a content management system written
in PHP.

The remote version of Jaws permits a possible hacker to include URLs
remotely.

See also : http://www.hardened-php.net/advisory-072005.php
Solution : Upgrade to JAWS version 0.5.3 or later.
Network Security Threat Level: High

Networks Security ID: 14158

Vulnerability Assessment Copyright: Copyright (C) 2005 Josh Zlatin-Amishav

Cables, Connectors

Cisco AIR-CT2504-K9 75 APs License Wireless Controller AIR-CT2504-75-K9
$999.99
Cisco AIR-CT2504-K9  75 APs License Wireless Controller AIR-CT2504-75-K9 pictureCisco Aironet AIR-PWRINJ5 PoE Power Injector 1600 2600 3600 Series AP
$29.95
Cisco Aironet AIR-PWRINJ5 PoE Power Injector 1600 2600 3600 Series AP pictureCisco CP-7940G Display IP Phone A-Stock Refurbished
$37.99
Cisco CP-7940G Display IP Phone A-Stock Refurbished pictureGenuine Cisco WIC-2T 2 port serial module for 18/19/26/28/29/ 3800 SeriesRouters
$15.0
Genuine Cisco WIC-2T 2 port serial module for 18/19/26/28/29/ 3800 SeriesRouters picture


Discussions

No Discussions have been posted on this vulnerability.