Description
Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.
Remediation
References
Related Vulnerabilities
Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.3.29)
PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2023-3823)
WordPress Plugin WC Duplicate Order Unspecified Vulnerability (1.3)