icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

PHPGroupWare < 0.9.16.007 Main Screen Message Script Injection

Low

Synopsis

The remote host is vulnerable to a Script Injection attack.

Description

The remote host seems to be running PHPGroupWare, a groupware system implemented in PHP. This version is reported vulnerable to a flaw where the Administrator can inject script code into the browsers of unsuspecting users.

Solution

Upgrade to version 0.9.16.007 or higher.