Description
mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ultimate Profile Builder By CMSHelpLive Multiple Vulnerabilities (2.3.3)
WordPress Plugin A2 Optimized WP Information Disclosure (2.0.10.8)
PHP CVE-2004-0542 Vulnerability (CVE-2004-0542)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.2)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-30152)