CVE-2010-2333

LiteSpeed Web Server < 4.0.15 - Unauthenticated Source Code Disclosure via Null Byte and .txt Extension

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2010-2333. PoCs published by kingcope, jmonge12, Kingcope, xanda, including Metasploit module auxiliary/scanner/http/litespeed_source_disclosure.

AI-analyzed exploit summary This Perl script exploits a null byte injection vulnerability in LiteSpeed Web Server to disclose the source code of PHP files. It sends a crafted HTTP request with a null byte followed by '.txt' to bypass file extension restrictions and retrieve the raw source code.

Description

LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.

Exploits (3)

exploitdb WORKING POC VERIFIED
by kingcope · perlremotemultiple
https://www.exploit-db.com/exploits/13850

This Perl script exploits a null byte injection vulnerability in LiteSpeed Web Server to disclose the source code of PHP files. It sends a crafted HTTP request with a null byte followed by '.txt' to bypass file extension restrictions and retrieve the raw source code.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: LiteSpeed Web Server (versions affected by CVE-2010-2333)
No auth needed
Prerequisites: Network access to the target web server
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WRITEUP
by jmonge12 · poc
https://github.com/jmonge12/Home-Network-Vulnerability-Assessment

This repository documents a security audit of a residential router, focusing on vulnerability detection using Nmap scripts, specifically identifying CVE-2014-3566 (POODLE) and CVE-2010-2333. It provides detailed methodology, tool usage, and evidence of vulnerabilities but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Cisco-Linksys router (firmware version unspecified)
No auth needed
Prerequisites: Nmap with NSE scripts · network access to the target router
devstral-2 · analyzed May 31, 2026 Full analysis →
metasploit WORKING POC
by Kingcope, xanda · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/litespeed_source_disclosure.rb

This Metasploit module exploits a source code disclosure vulnerability in LiteSpeed versions 4.0.14 and prior by appending a null byte followed by '.txt' to the requested URI, allowing unauthorized download of source code.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: LiteSpeed 4.0.14 and prior
No auth needed
Prerequisites: Network access to the target server · LiteSpeed server running a vulnerable version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/13850
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40128
Exploit mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2010/Jun/288
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/65476
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40815

Scores

EPSS 0.7649
EPSS Percentile 99.0%

Details

CWE
CWE-200
Status published
Products (15)
litespeedtech/litespeed_web_server 4.0
litespeedtech/litespeed_web_server 4.0.1
litespeedtech/litespeed_web_server 4.0.2
litespeedtech/litespeed_web_server 4.0.3
litespeedtech/litespeed_web_server 4.0.4
litespeedtech/litespeed_web_server 4.0.5
litespeedtech/litespeed_web_server 4.0.6
litespeedtech/litespeed_web_server 4.0.7
litespeedtech/litespeed_web_server 4.0.8
litespeedtech/litespeed_web_server 4.0.9
... and 5 more
Published Jun 18, 2010
Tracked Since Feb 18, 2026