Description The code.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. Remediation References CVE-1999-0738 Related Vulnerabilities WordPress Plugin Unyson Information Disclosure (2.7.18) PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-0207) Drupal Core 6.x Session Hijacking (6.0 - 6.33) WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Cross-Site Scripting (3.2.5) MyBB Insertion of Sensitive Information into Log File Vulnerability (CVE-2015-8977) Severity Medium Classification CVE-1999-0738 Tags Missing Update Known Vulnerabilities