Back to CWE list
CWE-553
Command Shell in Externally Accessible Directory
Variant
Incomplete
Description
A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.
Parent Weaknesses (ChildOf)
Common Consequences
Scope
Confidentiality
Integrity
Availability
Impact
Execute Unauthorized Code or Commands
Potential Mitigations
Installation
System Configuration
Remove any Shells accessible under the web root folder and children directories.
Applicable Platforms
Not Language-Specific
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now