Sensitive / Unauthorized Info Accessible

Sensitive information is available to unauthorized users through one or more of the following: * Poorly restricted web pages * Web page source code * Web pages containing sensitive content * Accessible/executable files * Office productivity files available Extension such as txt, doc, pdf, ppt, xls, csv, rtf, mdb, odc, mde, pub, wri, dif, sxw, sxi, sxc, sdw, sdd and sdc were found on a remote share.
and Evidence is :
The following CGI have been discovered :;;Syntax : cginame (arguments [default value]);;/shockwave/download/download.cgi (P1_Prod_Version [ShockwaveFlash] );;;The following email addresses have been gathered :;;;- '', referenced from :; /xyz/contact_QP_advisors.html;;;- '', referenced from :; /xyz/news.html;;;- '', referenced from :; /xyz/contact_QP_advisors.html;;;- '', referenced from :; /xyz/contact_plan_sponsors.html;;;- '', referenced from :;
Who is Participating?
gheistConnect With a Mentor Commented:
You have office documents on your webserver
- remove metadata from them, convert to pdf if you are concerned
You have email addresses in webpages
- you can use any scrambler or encoder  to hide them from spammer robots

There is no vulnerability - it is your website content you are showing to people.
Where is question - sentence with question mark in the end?
Brijeshk9Author Commented:
this is one of the Website Vulnerabilities found on my Webserver and i want to remove  this kind of Vulnerabilities,i have shared the Website Vulnerability and Evidence in my very first commnet(question).
Brijeshk9Author Commented:
Now Problem is resolved
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.