Soft3304 04WebServer prior to 1.20 does not properly process URL strings, which allows remote malicious users to obtain unspecified sensitive information.
soft3304 04webserver 1.20