SynopsisThe remote web server hosts an application framework written in PHP.
DescriptionThe remote web server is running Horde, an open source, PHP-based application framework from The Horde Project. This installation was detected on a web server configured with Parallels Plesk Panel, a web hosting control panel. Plesk pre-configures the Horde install with a virtual host such as 'horde.webmail.' or 'webmail.', depending on the host operating system Plesk is installed on. This virtual host configuration can cause the Horde install to not be scanned by Nessus unless the specific named host is scanned (for example, 'horde.webmail.example.com'). By not scanning the 'horde.webmail' or 'webmail.' named host, vulnerabilities within the installed version of Horde may go undetected.
SolutionConduct a review of the Plesk administrative panel to ensure all applications are updated to the most up-to-date versions.