Description
mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Accordion Shortcodes Cross-Site Scripting (2.4.2)
Apache Tomcat Session Fixation Vulnerability (CVE-2019-17563)
SharePoint Improper Privilege Management Vulnerability (CVE-2021-1712)
WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Request Forgery (1.9.2)
WordPress Plugin Remove Schema Cross-Site Request Forgery (1.4)