CVE-2008-5412
IBM WebSphere Application Server 7 (Windows) is affected by CVE-2008-5412/CVE-2009-0438, where WAS 7 before 7.0.0.1 allows remote attackers to bypass authorization and read sensitive data from JSPs via a crafted request. The issue is described as unspecified in the 2008 entry, with later sources ...