Lucene search
+L

4 matches found

OpenVAS
OpenVAS
added 2021/05/21 12:0 a.m.20 views

Apache Tapestry 5.4.0 < 5.6.4, 5.7.0 < 5.7.1 Information Disclosure Vulnerability

Apache Tapestry is prone to an information disclosure vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5.8AI score
Exploits0References1
NVD
NVD
added 2021/04/27 7:15 p.m.32 views

CVE-2021-30638

Information Exposure vulnerability in context asset handling of Apache Tapestry allows an attacker to download files inside WEB-INF if using a specially-constructed URL. This was caused by an incomplete fix for CVE-2020-13953. This issue affects Apache Tapestry Apache Tapestry 5.4.0 version to...

7.5CVSS0.06559EPSS
Exploits0References4
OSV
OSV
added 2021/04/27 7:15 p.m.20 views

CVE-2021-30638

Information Exposure vulnerability in context asset handling of Apache Tapestry allows an attacker to download files inside WEB-INF if using a specially-constructed URL. This was caused by an incomplete fix for CVE-2020-13953. This issue affects Apache Tapestry Apache Tapestry 5.4.0 version to...

7.5CVSS6.7AI score
Exploits0References4
CVE
CVE
added 2021/04/27 6:30 p.m.101 views

CVE-2021-30638

CVE-2021-30638 is an information-exposure vulnerability in Apache Tapestry caused by an incomplete fix for CVE-2020-13953 in context asset handling. It affects Apache Tapestry versions 5.4.0 through 5.6.3, and 5.7.0 through 5.7.1. An attacker can construct a URL to download files inside WEB-INF, ...

7.5CVSS6.1AI score0.06559EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder