Unrated severityNVD Advisory· Published Mar 25, 2006· Updated Apr 16, 2026

CVE-2006-1391

Description

The (a) Quick 'n Easy Web Server before 3.1.1 and (b) Baby ASP Web Server 2.7.2 allows remote attackers to obtain the source code of ASP files via (1) . (dot) and (2) space characters in the extension of a URL.

Affected products

Pablo Software Solutions/Baby Asp Web Server
cpe:2.3:a:pablo_software_solutions:baby_asp_web_server:2.7.2:*:*:*:*:*:*:*
Pablo Software Solutions/Quick And Easy Web Server2 versions
cpe:2.3:a:pablo_software_solutions:quick_and_easy_web_server:3.0.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:pablo_software_solutions:quick_and_easy_web_server:3.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:pablo_software_solutions:quick_and_easy_web_server:3.1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/19306nvdPatchVendor Advisory
secunia.com/secunia_research/2006-19/advisory/nvdPatchVendor Advisory
www.osvdb.org/24100nvdPatch
www.securityfocus.com/bid/17222nvdPatch
secunia.com/advisories/19312nvdVendor Advisory
securityreason.com/securityalert/624nvd
www.osvdb.org/24099nvd
www.securityfocus.com/archive/1/428667/100/0/threadednvd
www.vupen.com/english/advisories/2006/1085nvd
www.vupen.com/english/advisories/2006/1088nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25417nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25418nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000