PHPWind Board < 2.0.2 faq.php Remote File Inclusion (deprecated)

High Nessus Network Monitor Plugin ID 2513

Synopsis

The remote host is running PHPWind Board, a web based bulletin board.

Description

The remote host is running PHPWind Board, a web based bulletin board. There is a remote file inclusion vulnerability in older versions of this software that may allow an attacker to gain a shell on this host.

Solution

Upgrade to version 2.0.2 or higher.

Plugin Details

Severity: High

ID: 2513

Family: CGI

Published: 2004/08/18

Modified: 2015/06/01

Dependencies: 1442

Nessus ID: 16122

Risk Information

Risk Factor: High

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

Reference Information

BID: 12207