3 matches found
CVE-2020-4163
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, under specialized conditions, could allow an authenticated user to create a maliciously crafted file name which would be misinterpreted as jsp content and executed. IBM X-Force ID: 174397...
Security Bulletin: WebSphere Application Server is vulnerable to a command execution vulnerability (CVE-2020-4163)
Summary WebSphere Application Server is vulnerable to a command execution vulnerability. This has been addressed. Vulnerability Details CVEID: CVE-2020-4163 DESCRIPTION: IBM WebSphere Application Server, under specialized conditions, could allow an authenticated user to create a maliciously craft...
Дырка в WEbSphere
При HTTP-запросе в котором указано имя сервера не подходящее ни под один из виртуальных серверов показывается содержимое JSP-страницы...