Description ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. Remediation References CVE-1999-0236 Related Vulnerabilities Drupal Incorrect Authorization Vulnerability (CVE-2020-13676) WordPress Plugin underConstruction Cross-Site Scripting (1.18) ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9128) MySQL Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')Vulnerability (CVE-2020-5258) ReviveAdserver Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-7372) Severity High Classification CVE-1999-0236 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities