Description
It's possible to view the source code of CGI scripts via a POST request made to a directory where WebDAV and CGI are enabled.
Affected Apache versions (up to 2.0.42).
Remediation
Upgrade Apache 2.x to the latest version.
References
Related Vulnerabilities
WordPress Plugin Embedded Video 'lembedded-video.php' Cross-Site Scripting (4.1)
Atlassian Jira CVE-2020-36235 Vulnerability (CVE-2020-36235)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6102)
WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7)
Ruby Resource Management Errors Vulnerability (CVE-2008-2664)