Description
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
Remediation
References
Related Vulnerabilities
WordPress Plugin Event Tickets CSV Injection (4.10.7.1)
MySQL CVE-2013-1544 Vulnerability (CVE-2013-1544)
Oracle JRE CVE-2013-2454 Vulnerability (CVE-2013-2454)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8109)
WordPress Plugin Mingle Forum SQL Injection and Security Bypass Vulnerabilities (1.0.26)