2 matches found
NetGain Systems Enterprise Manager misc.sample_jsp type Directory Traversal (CVE-2017-16599)
A directory traversal vulnerability exists in NetGain Systems Enterprise Manager. The vulnerability is due to an input validation while processing type parameter in org.apache.jsp.u.jsp.reports.templates.misc.samplejsp servlet...
CVE-2017-16599
NetGain Systems Enterprise Manager 7.2.730 build 1034 is affected by CVE-2017-16599 through the org.apache.jsp.u.jsp.reports.templates.misc.sample_jsp servlet. The vulnerability stems from improper validation of a user-supplied path when parsing the type parameter, enabling directory traversal on...