exploitDog

GHSA-3hh7-4gv3-gf58

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00).

The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00).

Ссылки

EPSS

Процентиль: 98%

0.51367

Средний

CVE ID

Связанные уязвимости

CVE-2005-4550

nvd

около 20 лет назад

The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00).

EPSS

Процентиль: 98%

0.51367

Средний

CVE ID