Mongoose URI Trailing Slash Request Source Code Disclosure
Medium Nessus Plugin ID 48201
SynopsisThe remote web server is affected by an information disclosure vulnerability.
DescriptionThe version of the Mongoose web server running on the remote host discloses the source code of files such as PHP scripts when a trailing slash ('/') is appended to a URL.
An unauthenticated, remote attacker can leverage this issue to disclose the source of scripts, which may contain passwords and other sensitive information.
SolutionUnknown at this time.