[Openvas-discuss] question about openvas, arachni and false positives
framheim at gmx.de
Wed Aug 31 18:07:25 CEST 2011
Sorry my fault.
the differences has nothing to do with arachni, I just had accidentally
the arachni filter applied to see if the plugin is loaded.
Some questions still remain:
> I get following section 7(!) times in the report:
> Vulnerability found on port http (80/tcp)
> Overview: This host is installed with Dokuwiki and is prone to
> multiple Cross
> Site Scripting vulnerabilities.
> Vulnerability Insight:
> The flaws are due to error in 'ACL' Manager plugin
> (plugins/acl/ajax.php) that
> allows users to perform certain actions via HTTP requests
> without performing
> any validity checks.
> Successful exploitation allows attackers to conduct cross site
> forgery attacks via unknown vectors.
> Impact Level: Application.
> Affected Software/OS:
> Dokuwiki versions prior to 2009-12-25c
> Fix: Update to version 2009-12-25c or later.
> For Updates Refer, http://www.splitbrain.org/go/dokuwiki
> CVSS Score:
> CVSS Base Score : 6.8 (AV:N/AC:M/Au:NR/C:P/I:P/A:P)
> CVSS Temporal Score : 5.3
> Risk factor: High
> CVE : CVE-2010-0289
> OID : 220.127.116.11.4.1.25618.104.22.1680989
> This is a false positive. It is a Synology Diskstation with no Dokuwiki.
Why do i get this 7 times in my report? Does it mean a buggy NSL-script?
More information about the Openvas-discuss