184 matches found
CVE-2001-0399
Caucho Resin 1.3b1 and earlier allows remote attackers to read source code for Javabean files by inserting a .jsp before the WEB-INF specifier in an HTTP request...
Re: Tomcat may reveal script source code by URL trickery
There is another way to get the source from a jsp page using Tomcat. If you don't write HTTP/1.0 or HTTP/1.1 in the end of the GET request, you will get the source code and not the jsp processed. In other words, use Apache + Tomcat if you intend to protect your source code. telnet maq106 8080...
GWScripts News Publisher 1.0 - author.file Write
GWScripts News Publisher 1.0 - author.file Write source: https://www.securityfocus.com/bid/1621/info It is possible for a remote user to add an author to the author index author.file in GWScripts News Publisher, a web news publisher. This can be done by requesting the following raw HTTP request...
Michael Lamont Savant Web Server 2.13.0 - Remote Buffer Overflow
Michael Lamont Savant Web Server 2.13.0 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/1453/info A buffer overflow exists in the Savant Web Server. It is possible to exploit this overflow by sending an unusually long GET request to the server. / The MDMA Crew's proof-of-concep...