Description
In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe).
Remediation
References
Related Vulnerabilities
Squid Improper Input Validation Vulnerability (CVE-2014-7142)
Atlassian Jira CVE-2019-20410 Vulnerability (CVE-2019-20410)
MySQL CVE-2018-2665 Vulnerability (CVE-2018-2665)
WebLogic CVE-2022-21306 Vulnerability (CVE-2022-21306)
WordPress Plugin CMS Tree Page View 'cms_tpv_view' Parameter Cross-Site Scripting (0.8.8)