Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

KorWeblog < 1.6.2 Remote Directory Listing

Medium

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is using KorWeblog, a web-based log application written in PHP. A vulnerability exists in the remote version of this product that may allow a remote attacker to disclose directory listings. Information disclosures could help the attacker in further attacks.

Solution

Upgrade to version 1.6.2 or higher.