CWE-553 - Command Shell in Externally Accessible Directory

CWE-553

Abstraction:
Variant

Structure:
Simple

Status:
Incomplete

Weakness Name: Command Shell in Externally Accessible Directory

Description: A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.

Common Consequences: Scope: Confidentiality, Integrity, Availability
Impact: Execute Unauthorized Code or Commands

Related Weaknesses: CWE-552Files or Directories Accessible to External Parties

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard