Brijeshk9
asked on
Sensitive / Unauthorized Info Accessible
Sensitive information is available to unauthorized users through one or more of the following: * Poorly restricted web pages * Web page source code * Web pages containing sensitive content * Accessible/executable files * Office productivity files available Extension such as txt, doc, pdf, ppt, xls, csv, rtf, mdb, odc, mde, pub, wri, dif, sxw, sxi, sxc, sdw, sdd and sdc were found on a remote share.
and Evidence is :
The following CGI have been discovered :;;Syntax : cginame (arguments [default value]);;/shockwave/downlo ad/downloa d.cgi (P1_Prod_Version [ShockwaveFlash] );;;The following email addresses have been gathered :;;;- 'abc@xyz.com', referenced from :; /xyz/contact_QP_advisors.h tml;;;- 'def@xyz.com', referenced from :; /xyz/news.html;;;- 'ghk@xyz.com', referenced from :; /xyz/contact_QP_advisors.h tml;;;- 'lmn@xyz.com', referenced from :; /xyz/contact_plan_sponsors .html;;;- 'tpw@xyz.com', referenced from :;
and Evidence is :
The following CGI have been discovered :;;Syntax : cginame (arguments [default value]);;/shockwave/downlo
Where is question - sentence with question mark in the end?
ASKER
this is one of the Website Vulnerabilities found on my Webserver and i want to remove this kind of Vulnerabilities,i have shared the Website Vulnerability and Evidence in my very first commnet(question).
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Now Problem is resolved