Описание
A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an attacker to obtain registered users' details.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [code not present]] |
| precise/esm | DNE | |
| trusty | not-affected | code not present |
| trusty/esm | DNE | trusty was not-affected [code not present] |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
10
7.8 High
CVSS2
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
почти 7 лет назад
A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an attacker to obtain registered users' details.
CVSS3: 7.5
debian
почти 7 лет назад
A specially crafted url could be used to access files under the ROOT d ...
CVSS3: 7.5
github
почти 7 лет назад
Improper Limitation of a Pathname ('Path Traversal') in org.apache.jspwiki:jspwiki-war
7.8 High
CVSS2
7.5 High
CVSS3