Description
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.
Remediation
References
Related Vulnerabilities
Liferay DXP Other Vulnerability (CVE-2023-33946)
MySQL CVE-2023-21881 Vulnerability (CVE-2023-21881)
Nginx Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9516)
WordPress Plugin CM Download Manager Cross-Site Scripting (2.7.0)
phpMyFAQ Authentication Bypass by Capture-replay Vulnerability (CVE-2023-1886)