Apache Tomcat 'RequestDispatcher' Information Disclosure Vulnerability
An attacker can exploit this issue through a browser. The following proof-of-concept URI is available: http://www.example.com/page.jsp?blah=/../WEB-INF/web.xml |
Privacy Statement |