Description The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. Remediation References CVE-1999-0736 Related Vulnerabilities TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-19850) WordPress Plugin cformsII HTML Injection (15.0.1) XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0612) WordPress Plugin BadgeOS SQL Injection (3.7.0) WordPress Plugin Simple Link Directory PHP Object Injection (5.5.0) Severity Medium Classification CVE-1999-0736 Tags Missing Update Known Vulnerabilities