Description
mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.
Remediation
References
Related Vulnerabilities
PostgreSQL Out-of-bounds Read Vulnerability (CVE-2019-10209)
Ruby on Rails CVE-2013-0277 Vulnerability (CVE-2013-0277)
Oracle Database Server CVE-2006-3701 Vulnerability (CVE-2006-3701)
WordPress Plugin 3D Product configurator for WooCommerce Arbitrary File Upload (1.5.531)
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.136.3)