CVE-2006-4908
In the provided documents, OSU 3.11alpha and 3.10a are reported vulnerable to information disclosure when a URL contains an asterisk wildcard, which allows remote attackers to view all matching file and directory information. The root cause is exposure of directory listings via unintended wildcar...