Description
Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.
Remediation
References
Related Vulnerabilities
WordPress Plugin EmbedSocial-Social Media Feeds, Reviews and Galleries Cross-Site Scripting (1.1.27)
WordPress Plugin Ultimate Addons for Beaver Builder Security Bypass (1.24.0)
WordPress Plugin Google Pagespeed Insights Cross-Site Scripting (3.0.0)
WordPress Plugin Party Hall Booking Manager SQL Injection (1.1)