Website set up on an inhouse machine, using File Maker Pro Server and File Maker Pro Vulnerabilities
Posted on 2013-06-18
I am trying to help a group with their website. It has a deep and complicated database set up using File Maker Pro server to show file maker pro files for an adult and community ed website. They are hosting it internally on a MAC machine, which I can't make heads nor tails of.
They recently got a report from their bank listing dozens of vulnerabilities. Here are a few of the PHP vulnerabilities:
PHP Overflow Vulnerability in php stream scandir
PHP crypt Function Buffer Overflow Vulnerability
PHP SOAP Extension open basedir Write Restriction Bypass
PHP phar Extension Heap Overflow and Denial of Service Vulnerability
This site is on PHP5, but I can't check to see what subversion it is. Could this possibly just need a PHP upgrade, or are there other things going on?