Описание
Improper Input Validation in Mortbay Jetty
jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations.
Пакеты
Наименование
org.mortbay.jetty:jetty
maven
Затронутые версииВерсия исправления
< 6.0.0
6.0.0
Связанные уязвимости
CVSS3: 5.3
redhat
около 19 лет назад
jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations.
nvd
около 19 лет назад
jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations.
debian
около 19 лет назад
jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary ...