Brijeshk9
asked on
Sensitive / Unauthorized Info Accessible
Sensitive information is available to unauthorized users through one or more of the following: * Poorly restricted web pages * Web page source code * Web pages containing sensitive content * Accessible/executable files * Office productivity files available Extension such as txt, doc, pdf, ppt, xls, csv, rtf, mdb, odc, mde, pub, wri, dif, sxw, sxi, sxc, sdw, sdd and sdc were found on a remote share.
and Evidence is :
The following CGI have been discovered :;;Syntax : cginame (arguments [default value]);;/shockwave/downlo ad/downloa d.cgi (P1_Prod_Version [ShockwaveFlash] );;;The following email addresses have been gathered :;;;- 'abc@xyz.com', referenced from :; /xyz/contact_QP_advisors.h tml;;;- 'def@xyz.com', referenced from :; /xyz/news.html;;;- 'ghk@xyz.com', referenced from :; /xyz/contact_QP_advisors.h tml;;;- 'lmn@xyz.com', referenced from :; /xyz/contact_plan_sponsors .html;;;- 'tpw@xyz.com', referenced from :;
and Evidence is :
The following CGI have been discovered :;;Syntax : cginame (arguments [default value]);;/shockwave/downlo
Where is question - sentence with question mark in the end?
ASKER
this is one of the Website Vulnerabilities found on my Webserver and i want to remove this kind of Vulnerabilities,i have shared the Website Vulnerability and Evidence in my very first commnet(question).
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
Now Problem is resolved