Description
FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2000-0169)
WordPress Plugin Share on Diaspora Cross-Site Scripting (0.7.1)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-16943)
WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20)
WordPress Plugin Image Gallery with Slideshow 'upload-file.php' Arbitrary File Upload (1.5)