Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
NetCat CMS Multiple Vulnerabilities
Information
Severity
Severity
Medium
Family
Family
Web application abuses
CVSSv2 Base
CVSSv2 Base
5.0
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Solution Type
Solution Type
Vendor Patch
Created
Created
9 years ago
Modified
Modified
5 years ago
Summary
The host is installed with NetCat CMS and is prone to multiple vulnerabilities.
Insight
Insight
Multiple flaws are due to input passed via, - 'redirect_url' parameter to 'netshop/post.php' is not properly validated. - 'site' parameter to 'modules/redir/?' is not properly validated. - 'url' parameter to 'redirect.php?' is not properly validated.
Affected Software
Affected Software
NetCat CMS version 5.01, 3.12, 3.0, 2.4, 2.3, 2.2, 2.1, 2.0 and 1.1
Detection Method
Detection Method
Send a crafted request via HTTP GET and check whether it redirects to the malicious website.
Solution
Solution
Update to NetCat CMS 5.5 or later.