Описание
The (a) Quick 'n Easy Web Server before 3.1.1 and (b) Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via (1) . (dot) and (2) space characters in the extension of a URL.
Ссылки
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Patch
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:pablo_software_solutions:baby_asp_web_server:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:pablo_software_solutions:quick_and_easy_web_server:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:pablo_software_solutions:quick_and_easy_web_server:3.1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01349
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The (a) Quick 'n Easy Web Server before 3.1.1 and (b) Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via (1) . (dot) and (2) space characters in the extension of a URL.
EPSS
Процентиль: 80%
0.01349
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other