Description

FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.

Remediation

References

CVE-1999-1375

Related Vulnerabilities

Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432)

MySQL CVE-2012-1690 Vulnerability (CVE-2012-1690)

TYPO3 Improper Input Validation Vulnerability (CVE-2014-3941)

WordPress Plugin Web Directory Free SQL Injection (1.6.9)

WordPress Plugin Background Music Cross-Site Scripting (1.0)

Severity

Medium

Classification

CVE-1999-1375

Tags

Missing Update Known Vulnerabilities