Description

Apache 1.3.20 on Windows servers allows remote attackers to bypass the default index page and list directory contents via a URL with a large number of / (slash) characters.

Remediation

References

CVE-2001-0729

Related Vulnerabilities

Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33196)

XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29524)

MySQL CVE-2020-2763 Vulnerability (CVE-2020-2763)

WordPress Plugin WP Private Content Plus Cross-Site Request Forgery (3.1)

WordPress Plugin WR ContactForm SQL Injection (1.1.9)

Severity

Medium

Classification

CVE-2001-0729

Tags

Missing Update Known Vulnerabilities