 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.51755 |
| Category: | Misc. |
| Title: | MPM Guestbook Multiple vulnerabilities |
| Summary: | NOSUMMARY |
| Description: | Description: We have detected that the remote host has MPM Guestbook installed. This application suffers from several vulnerabilities: Versions prior to 1.0.6 allow for the remote reading of any file on your system. Version 1.0.6 has a design flaw whereby anyone using the software pulls, at run-time, PHP code from the author's site whenever a user references the admin.php script. This can slow down the loading of your web page. It also means that if the author's site's security is ever breached, a malicous attacker could automatically breach the security of every site using this package. Note that we did not verify the existence of the flaw on this case, only that you have the application installed. Please ensure that you have version 1.0.6 or later. Risk factor : High |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |