mailing list archives
IIS volunrability scan results
From: Juan B <juanbabi () yahoo com>
Date: Wed, 22 Dec 2004 06:36:47 -0800 (PST)
I ran whcc against one of my company's web site (IIS).
this is what I reciecved:
Description: Appending '/./' to a directory may reveal
php source code.
Description: The PHP-Nuke install may allow attackers
to enable debug mode and disclose sensitive
information by adding sql_debug=1 to the query string.
is this critical? can some one please expain or give
some links so Ican understand those results?
thanks very much !
Do you Yahoo!?
Yahoo! Mail - You care about security. So do we.
- IIS volunrability scan results Juan B (Dec 22)