ID de Prueba:	1.3.6.1.4.1.25623.1.0.14294
Categoría:	Web application abuses
Título:	PhpGroupWare unspecified remote file include vulnerability
Resumen:	The remote host seems to be running PhpGroupWare, is a multi-user groupware; suite written in PHP.
Descripción:	Summary: The remote host seems to be running PhpGroupWare, is a multi-user groupware suite written in PHP. Vulnerability Insight: This version is prone to a vulnerability that may permit remote attackers, without prior authentication, to include and execute malicious PHP scripts. Remote users may influence URI variables to include a malicious PHP script on a remote system, it is possible to cause arbitrary PHP code to be executed. Solution: Update to version 0.9.14.006 or newer CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0504 Bugtraq: 20030702 [KSA-003] Cross Site Scripting Vulnerability in Phpgroupware (Google Search) http://marc.info/?l=bugtraq&m=105718361607981&w=2 Conectiva Linux advisory: CLA-2003:697 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000697 Debian Security Information: DSA-365 (Google Search) http://www.debian.org/security/2003/dsa-365 http://www.mandriva.com/security/advisories?name=MDKSA-2003:077 http://www.security-corporation.com/articles-20030702-005.html
Copyright	Copyright (C) 2004 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.