Author Paul Johnston [email protected], Copyright (C) 2003-2016 Westpoint Ltd
The remote web server is affected by an information disclosure
This web server is running MyServer <= 0.4.3 or 0.7. This version
contains a directory traversal vulnerability, that allows remote users
with no authentication to read files outside the webroot.
You have to create a dot-dot URL with the same number of '/./' and
'/../' + 1.
See also :
Upgrade to MyServer 0.7.1 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true