Description
IIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to the URL, a variant of the "File Fragment Reading via .HTR" vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Tweet Blender Cross-Site Scripting (4.0.1)
SharePoint CVE-2021-1726 Vulnerability (CVE-2021-1726)
WordPress Plugin NEX-Forms-The Ultimate WordPress Form Builder Security Bypass (7.8.7)
MySQL CVE-2023-22102 Vulnerability (CVE-2023-22102)
WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (4.4.7)