Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> CGI abuses : XSS >> PHPay Information Disclosure

Vulnerability Assessment Details

PHPay Information Disclosure

Vulnerability Assessment Summary
Searches for the existence of phpinfo.php

Detailed Explanation for this Vulnerability Assessment

The remote host is running PHPay, an online shop management system.

This package contains multiple information leakages which may permit
a possible hacker to obtain the physical path of the installation on the remote
host or even the exact version of the components used by the remote host,
by using the file admin/phpinfo.nasl which comes with it.

This files make a call to phpinfo() which display a lot of information
about the remote host and how PHP is configured.

A possible hacker may use this flaw to gain a more intimate knowledge
about the remote host and better prepare its attacks.

In addition to this, this version is vulnerable to a cross-site-scripting
issue which may let a possible hacker steal the cookies of your legitimate users.

Solution : Upgrade to PHPay 2.2.1 or newer
Network Security Threat Level: Low

Networks Security ID: 7309, 7310, 7313

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Renaud Deraison

Cables, Connectors