Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
w-Agora Site parameter remote directory traversal flaw
Information
Severity
Severity
Medium
Family
Family
Web application abuses
CVSSv2 Base
CVSSv2 Base
5.0
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Solution Type
Solution Type
Vendor Patch
Created
Created
18 years ago
Modified
Modified
5 years ago
Summary
The remote host is running w-agora, a web-based forum management software written in PHP. The remote version of this software is prone to directory traversal attacks. An attacker could send specially crafted URL to read arbitrary files on the remote system with the privileges of the web server process.
Solution
Solution
Upgrade to the newest version of this software