CWE-553
Command Shell in Externally Accessible Directory
Description
A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.
Consequences
Confidentiality, Integrity, Availability
—
Execute Unauthorized Code or Commands
Mitigations
Phase: Installation, System Configuration
Remove any Shells accessible under the web root folder and children directories.