Описание
The Undertow module of WildFly allows source code disclosure
The Undertow module of WildFly versions 8.1.0.Final, 8.2.0.Final, 9.0.0.CR1 allows remote attackers to obtain the source code of a JSP page via a "/" at the end of a URL.
Пакеты
Наименование
org.wildfly:wildfly-parent
maven
Затронутые версииВерсия исправления
>= 8.1.0.Final, <= 9.0.0.CR1
9.0.0.CR2
Связанные уязвимости
redhat
почти 11 лет назад
The Undertow module of WildFly 9.x before 9.0.0.CR2 and 10.x before 10.0.0.Alpha1 allows remote attackers to obtain the source code of a JSP page via a "/" at the end of a URL.
CVSS3: 7.5
nvd
больше 8 лет назад
The Undertow module of WildFly 9.x before 9.0.0.CR2 and 10.x before 10.0.0.Alpha1 allows remote attackers to obtain the source code of a JSP page via a "/" at the end of a URL.