About GET A DEMO

Backslash Vulnerability Database

Command Shell in Externally Accessible Directory

Command Shell in Externally Accessible Directory

CWE-553

Short description

A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.

Best practices to prevent this CWE

Phase: Installation; System Configuration

Remove any Shells accessible under the web root folder and children directories.

Prioritize and Uncover Reachable Vulnerabilities in Your Application Code

Identify externally reachable data flows and vulnerabilities for effective risk mitigation

© 2023 Backslash. 28 HaArba'a St., Tel-Aviv Privacy Policy | Terms of Use