Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Lighttpd Other Vulnerability - CVE-2005-0453 - Vulnerability Database
Lighttpd

Lighttpd Other Vulnerability - CVE-2005-0453

Medium
Reference: CVE-2005-0453
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2005-0453
Title: Lighttpd Other Vulnerability
Overview:

The buffer_urldecode function in Lighttpd 1.3.7 and earlier does not properly handle control characters which allows remote attackers to obtain the source code for CGI and FastCGI scripts via a URL with a 00 (null) character after the file extension.