phpLiteAdmin Detected

Severity: Information

Summary#

Invicti identified that phpLiteAdmin is publicly accessible on the target server. phpLiteAdmin is an application written in the PHP language that provides a web-based interface for the administration of SQLite databases.

Impact#

An attacker can access, modify or delete all SQLite databases.

Remediation#

Configure your web server to prevent public access to the phpLiteAdmin directory / page by implementing access control mechanisms.

Classifications#

CWE-205, ISO27001-A.14.2.5, WASC-13, OWASP 2017-A6

Invicti Security Insights

Sven Morgenroth Talks About PHP Object Injection Vulnerabilities on Paul’s Security Weekly Podcast
End of Support for PHP 5 and PHP 7.0
PHP Wrappers, Streams & Local File Intrusion (LFI)
Sven Morgenroth Talks About PHP Type Juggling on Paul’s Security Weekly Podcast
PHP Type Juggling Exploit: Vulnerability, Payloads, and Fixes

Select Category

Critical
High
Medium
Low
Best Practice
Information

Search Vulnerability

phpLiteAdmin Detected

Related Articles

Build your resistance to threats. And save hundreds of hours each month.