Spring Framework Unspecified Directory Traversal Vulnerability

Spring Framework is prone to an unspecified directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

A remote attacker could exploit this issue using directory-traversal characters ('../') to access arbitrary files that contain sensitive information. Information harvested may aid in launching further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus