2 matches found
CVE-2006-0816
Orion Application Server before 2.0.7 on Windows is affected by a filename extension validation flaw that allows remote disclosure of JSP source code. An attacker can craft a URL with dot or space characters in the extension to reveal the contents of JSP files. The vulnerability impacts confident...
[Full-disclosure] Secunia Research: Orion Application Server JSP Source Disclosure Vulnerability
====================================================================== Secunia Research 23/03/2006 - Orion Application Server JSP Source Disclosure Vulnerability - ====================================================================== Table of Contents Affected...