Description
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-1999-0739)
WordPress Plugin Editorial Calendar Multiple Vulnerabilities (2.6)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17306)
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8289)