Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Cvelist
Cvelistadded 2001/01/22 5:0 a.m.22 views

CVE-2000-0672

The default configuration of Jakarta Tomcat does not restrict access to the /admin context, which allows remote attackers to read arbitrary files by directly calling the administrative servlets to add a context for the root directory...

6.8AI score0.09846EPSS
Exploits1References3
CVE
CVEadded 2001/01/22 5:0 a.m.91 views

CVE-2000-0672

The CVE-2000-0672 issue concerns the default configuration of Jakarta Tomcat which does not restrict access to the /admin context, enabling a remote attacker to read arbitrary files by invoking administrative servlets to add a context for the root directory. The vulnerability affects the admin co...

5CVSS6.8AI score0.09846EPSS
Exploits1References3Affected Software1
Apache Tomcat
Apache Tomcatadded 2000/07/21 12:0 a.m.29 views

Fixed in Apache Tomcat 3.2

Low: Information disclosure CVE-2000-0759 Requesting a JSP that does not exist results in an error page that includes the full file system page of the current context. Affects: 3.1 Important: Information disclosure CVE-2000-0672 Access to the admin context is not protected. This context allows an...

6.4CVSS5.9AI score0.2566EPSS
Exploits2Affected Software1
Rows per page
Query Builder