Description
The buffer_urldecode function in Lighttpd 1.3.7 and earlier does not properly handle control characters, which allows remote attackers to obtain the source code for CGI and FastCGI scripts via a URL with a %00 (null) character after the file extension.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slideshow Gallery LITE Multiple Vulnerabilities (1.5.1)
Apache Traffic Server HTTP Request Smuggling Vulnerability (CVE-2020-17509 )
Atlassian Confluence CVE-2023-22515 Vulnerability (CVE-2023-22515)
Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2023-3128)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7874)