Directory Listing and Source Code Disclosure Vulnerability in Xerver 4.17

Directory Listing and Source Code Disclosure Vulnerability in Xerver 4.17

CVE-2005-3293 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Xerver 4.17 allows remote attackers to (1) obtain source code of scripts via a request with a trailing "." (dot) or (2) list directory contents via a trailing null character.

Learn more about our Web Application Penetration Testing UK.