Description
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2002-0569)
WordPress Plugin User Profile Picture Information Disclosure (2.4.0)
WordPress Plugin Lightbox Multiple Unspecified Vulnerabilities (2.0.7)
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4729)
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20419)