2005-05-18 04:00:00
mitre
PUBLISHED
Mercur Messaging 2005 SP2 allows remote attackers to read the source code of .ctml files via a URL with a trailing hex-encoded space ("%20").