4 matches found
CVE-2012-4834
Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote attackers to read arbitrary files via a crafted URI...
Directory traversal
Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote attackers to read arbitrary files via a crafted URI...
CVE-2012-4834
IBM WebSphere Portal versions 7.0.0.1/7.0.0.2 before CF19 and 8.0 before CF03 are affected by CVE-2012-4834 via the theme component’s LayerLoader.jsp (Dojo module). An attacker can read arbitrary files by supplying a crafted path/URI parameter, due to inadequate validation in the Dojo layerLoader...
CVE-2012-4834
Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote attackers to read arbitrary files via a crafted URI...