Oracle Endeca IDI ETL Server UploadFileConent Directory Traversal (CVE-2015-2602)
A directory traversal vulnerability exists in Oracle Endeca Information Discovery Integrator ETL Server. The vulnerability is due to insufficient input validation while processing SOAP requests to the UploadFileConent operation. A remote authenticated attacker can leverage this vulnerability to...