Description In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. Remediation References CVE-1999-0278 Related Vulnerabilities WordPress Plugin Social Media Widget Serving Spam (4.0) Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1591) PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30839) Oracle Database Server CVE-2014-6545 Vulnerability (CVE-2014-6545) WordPress Plugin WP Statistics Cross-Site Scripting (12.0.5) Severity Medium Classification CVE-1999-0278 Tags Missing Update Known Vulnerabilities