Description
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Points and Rewards Security Bypass (1.3.4)
MySQL CVE-2020-2924 Vulnerability (CVE-2020-2924)
Ruby Improper Authentication Vulnerability (CVE-2019-16201)
WordPress Plugin Divi Builder Security Bypass (1.2.3)
WordPress Plugin Testimonial Rotator Cross-Site Scripting (3.0.2)