Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Trend Micro Deep Discovery Inspector Authentication Bypass and XSS Vulnerabilities
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is installed with Trend Micro Deep Discovery Inspector and is prone to authentication bypass and cross-site scripting vulnerabilities.
Insight
Insight
Multiple flaws are due to an, - Insufficient access restrictions for some sensitive files via a direct request to the system log URL, whitelist URL and blacklist URL. - Insufficient validation of crafted input passed to index.php and to the widget feature.
Affected Software
Affected Software
Trend Micro Deep Discovery Inspector with software before 3.5, 3.6, 3.7 and 3.8
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Install the vendor patch.