Description
nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending ::$DATA to the URI.
Remediation
References
Related Vulnerabilities
WordPress 4.0.x Denial of Service Vulnerability (4.0 - 4.0.22)
WordPress Plugin BuddyPress Multiple Vulnerabilities (9.0.0)
Artifactory Incorrect Default Permissions Vulnerability (CVE-2021-46270)
WeBid Other Vulnerability (CVE-2014-5114)
WordPress Plugin Caldera Forms-More Than Contact Forms Information Disclosure (1.3.5.2)