Security feature bypass

2008-02-2221:44:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.1%

JSON

Unspecified vulnerability in the download servlet in BEA Plumtree Collaboration 4.1 through SP2 and AquaLogic Interaction 4.2 through MP1 allows remote attackers to read arbitrary files via a crafted URL.

CPENameOperatorVersion
aqualogic_interactioneq4.2
aqualogic_interactioneq4.2.0-mp1
plumtree_collaborationeq4.1.0-sp2
plumtree_collaborationeq4.1.0-sp1
plumtree_collaborationeq4.1

Name	Operator	Version
aqualogic_interaction	eq	4.2
aqualogic_interaction	eq	4.2.0-mp1
plumtree_collaboration	eq	4.1.0-sp2
plumtree_collaboration	eq	4.1.0-sp1
plumtree_collaboration	eq	4.1