Pico Server (pServ) 3.2 and earlier allows remote attackers to obtain the source code for CGI scripts via dirname/../cgi-bin in a URL.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Pico_server | Pico_server | 3.0 (including) | 3.0 (including) |
| Pico_server | Pico_server | 3.0_beta_3 (including) | 3.0_beta_3 (including) |
| Pico_server | Pico_server | 3.1 (including) | 3.1 (including) |
| Pico_server | Pico_server | 3.2 (including) | 3.2 (including) |