Description CGI PHP mylog script allows an attacker to read any file on the target server. Remediation References CVE-1999-0068 Related Vulnerabilities XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29252) Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664) PHP Improper Input Validation Vulnerability (CVE-2011-4885) Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-7572) Ruby on Rails Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6497) Severity High Classification CVE-1999-0068 Tags Missing Update Known Vulnerabilities