Hi all,
jeff: i think results that u got from the server are false positives as u would be sending the request (e.g. http://mymachine/scripts/samples/search/qsumrhit.htw) and u would be getting 200 OK response from the server and u concluded that these vulnerabilities exist in the webserver but may be this is a redirect to any default page and thus got 200 Ok. Possibly these vulnerbilities does not exist on that machine and u r only getting false +ve.
Thanks
Note: If i m wrong at any point plz correct me.
