Description

The code.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.

Remediation

References

CVE-1999-0738

Related Vulnerabilities

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5447)

phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1431)

WordPress Plugin WP-Invoice-Web Invoice and Billing Multiple Vulnerabilities (4.1.0)

WordPress Plugin Analytics Stats Counter Statistics PHP Object Injection (1.2.2.5)

WordPress Plugin No Page Comment Multiple Vulnerabilities (1.1)

Severity

Medium

Classification

CVE-1999-0738

Tags

Missing Update Known Vulnerabilities