Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of CVE-2018-14371
A flaw was found in Eclipse Mojarra before version 2.3.14, where it is vulnerable to a path traversal flaw via the loc parameter or the con parameter. An attacker could exploit this flaw to read arbitrary files...