Description
IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Maps Widget for Google Maps-Google Maps Builder Cross-Site Scripting (2.30)
WordPress Plugin BrewMaster Multiple Cross-Site Scripting Vulnerabilities (1.0)
Jenkins Improper Input Validation Vulnerability (CVE-2012-6073)
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0276)