Description
FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.
Remediation
References
Related Vulnerabilities
Joomla Improper Access Control Vulnerability (CVE-2016-9838)
Apache Tomcat Resource Management Errors Vulnerability (CVE-2011-4858)
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2021-33334)
MySQL CVE-2016-5626 Vulnerability (CVE-2016-5626)
WordPress Plugin Simple Backup Arbitrary File Download (2.7.10)