The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files.