Test ID:	1.3.6.1.4.1.25623.1.0.12292
Category:	Web application abuses
Title:	PowerPortal Path Dislcosure
Summary:	The remote host is using PowerPortal, a content management system,; written in PHP.;; A vulnerability exists in the remote version of this product which may allow a remote attacker to; cause the product to disclose the path it is installed under. An attacker may use this flaw to; gain more knowledge about the setup of the remote host, and therefore prepare better attacks.
Description:	Summary: The remote host is using PowerPortal, a content management system, written in PHP. A vulnerability exists in the remote version of this product which may allow a remote attacker to cause the product to disclose the path it is installed under. An attacker may use this flaw to gain more knowledge about the setup of the remote host, and therefore prepare better attacks. Solution: Upgrade to the latest version of this software. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0662 BugTraq ID: 10622 http://www.securityfocus.com/bid/10622 Bugtraq: 20040628 Multiple vulnerabilities PowerPortal (Google Search) http://marc.info/?l=bugtraq&m=108844362627811&w=2 http://www.swp-zone.org/archivos/advisory-07.txt XForce ISS Database: powerportal-path-disclosure(16529) https://exchange.xforce.ibmcloud.com/vulnerabilities/16529 Common Vulnerability Exposure (CVE) ID: CVE-2004-0664 XForce ISS Database: powerportal-dotdot-directory-traversal(16530) https://exchange.xforce.ibmcloud.com/vulnerabilities/16530
Copyright	Copyright (C) 2004 Noam Rathaus

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.