Description
split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the .log extension via an HTTP request with a / (slash) in the Host: header.
Remediation
References
Related Vulnerabilities
WordPress Plugin Eventify-Simple Events 'npath' Parameter Remote File Include (1.7.g)
WebLogic CVE-2020-14883 Vulnerability (CVE-2020-14883)
WordPress Plugin Feedweb Unspecified Vulnerability (3.0.10)
Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7187)
WordPress Plugin Content text slider on post Cross-Site Scripting (6.8)