Description
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP CSV Unspecified Vulnerability (1.7.8.0)
Oracle JRE CVE-2013-1476 Vulnerability (CVE-2013-1476)
WordPress Plugin Backend Localization Multiple Cross-Site Scripting Vulnerabilities (1.6.1)
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803)