Lucene search
K

25 matches found

OSV
OSV
added 2026/05/26 5:16 p.m.8 views

GHSA-XQ3R-2QV5-VQQM XWiki Platform has path traversal via resources parameter in ssx and jsx endpoints when using leading slash

Impact It's possible to get access and read configuration files by using URLs such as http://localhost:8080/bin/ssx/Main/WebHome?resource=/../../WEB-INF/xwiki.cfg&minify=false. This can apparently be reproduced on Tomcat instances. Patches This has been patched in 18.0.0-rc-1, 17.10.3, 17.4.9,...

9.3CVSS5.8AI score0.19538EPSS
Exploits0References5
NVD
NVD
added 2026/05/20 8:16 p.m.10 views

CVE-2026-23734

XWiki Platform is a generic wiki platform. Versions prior to 18.1.0-rc-1, 17.10.3, 17.4.9, and 16.10.17 allow access to read configuration files by using URLs such as http://localhost:8080/bin/ssx/Main/WebHome?resource=/../../WEB-INF/xwiki.cfg&minify=false, leading to Path Traversal. The...

9.3CVSS0.19538EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Jetty9

In Eclipse Jetty versions 1.0 through 9.4.32.v20200930, 10.0.0alpha1 through 10.0.0.beta2, and 11.0.0alpha1 through 11.0.0.beta2O, on Unix-like systems, the system’s temporary directory is shared among all users on that system. A collocated user can observe the process of creating a temporary...

7CVSS7.2AI score0.043EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/01/28 7:58 p.m.5 views

CVE-2023-37525

A sensitive information disclosure in HCL BigFix Compliance allows a remote attacker to access files under the WEB-INF directory, which may contain Java class files and configuration information, leading to unauthorized access to application internals...

5.3CVSS5.9AI score0.00293EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/28 7:58 p.m.3 views

CVE-2023-37525 HCL BigFix Compliance is vulnerable to a sensitive information disclosure

A sensitive information disclosure in HCL BigFix Compliance allows a remote attacker to access files under the WEB-INF directory, which may contain Java class files and configuration information, leading to unauthorized access to application internals...

5.3CVSS5.9AI score0.00293EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/01/08 7:28 a.m.8 views

tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE

A directory traversal vulnerability in Apache Tomcat caused by improper URL normalization during request rewriting. When specific rewrite rules are used, an attacker could craft a malicious request to bypass access restrictions and reach protected directories such as /WEB-INF/ or /META-INF/. If...

7.5CVSS7.7AI score0.66535EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2025/12/20 12:0 a.m.9 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: tomcat (UTSA-2025-991299)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991299 advisory. Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded...

7.5CVSS8.6AI score0.66535EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2025/12/10 5:45 p.m.6 views

tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE

A directory traversal vulnerability in Apache Tomcat caused by improper URL normalization during request rewriting. When specific rewrite rules are used, an attacker could craft a malicious request to bypass access restrictions and reach protected directories such as /WEB-INF/ or /META-INF/. If...

7.5CVSS7.7AI score0.66535EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2025/12/10 3:12 p.m.3 views

tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE

A directory traversal vulnerability in Apache Tomcat caused by improper URL normalization during request rewriting. When specific rewrite rules are used, an attacker could craft a malicious request to bypass access restrictions and reach protected directories such as /WEB-INF/ or /META-INF/. If...

7.5CVSS7.7AI score0.66535EPSS
Exploits4References6
RedhatCVE
RedhatCVE
added 2025/09/05 9:31 p.m.3 views

CVE-2025-55748

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 4.2-milestone-2 through 16.10.6, configuration files are accessible through jsx and sx endpoints. It's possible to access and read configuration files by using URLs such as...

9.3CVSS6.8AI score0.01639EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-28169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resourc...

5.3CVSS6.9AI score0.7848EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2023/01/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-34429

For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. This is a variation of the vulnerability reported in CVE-2021-28164/GHSA-v7ff-8wcx-gmc...

5.3CVSS6.7AI score0.99298EPSS
Exploits11References1
ATTACKERKB
ATTACKERKB
added 2022/07/02 12:15 a.m.2 views

CVE-2022-32551

Zoho ManageEngine ServiceDesk Plus MSP before 10604 allows path traversal to WEBINF/web.xml from sample/WEB-INF/web.xml or sample/META-INF/web.xml...

7.5CVSS7.1AI score0.03375EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/12/14 9:31 p.m.7 views

jetty: Ambiguous paths can access WEB-INF

In Jetty the default compliance mode allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF directory. An attacker can use this vulnerability to reveal sensitive information regarding the implementation of a web application...

5.3CVSS7.4AI score0.82371EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2021/11/23 10:34 a.m.3 views

jetty: Ambiguous paths can access WEB-INF

In Jetty the default compliance mode allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF directory. An attacker can use this vulnerability to reveal sensitive information regarding the implementation of a web application...

5.3CVSS7.4AI score0.82371EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2021/08/19 7:17 a.m.6 views

jetty: requests to the ConcatServlet and WelcomeFilter are able to access protected resources within the WEB-INF directory

For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to /concat?/%2557EB-INF/web.xml can retrieve the web.xml file. This can reveal...

5.3CVSS6.9AI score0.7848EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2021/07/15 12:0 a.m.15 views

PT-2021-6553 · Eclipse +2 · Eclipse Jetty +2

Name of the Vulnerable Software and Affected Versions: Eclipse Jetty versions 9.4.37 through 9.4.42 Eclipse Jetty versions 10.0.1 through 10.0.5 Eclipse Jetty versions 11.0.1 through 11.0.5 Description: The issue allows an attacker to craft URIs using encoded characters to access the content of t...

7.5CVSS6.9AI score0.99999EPSS
Exploits31References169
OSV
OSV
added 2021/07/03 11:3 a.m.4 views

OESA-2021-1249 jetty security update

Jetty is a 100% Java HTTP Server and Servlet Container. This means that you do not need to configure and run a separate web server like Apache in order\ to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully\ featured web server for static and dynamic content. Unlike separat...

5.3CVSS6.5AI score0.7848EPSS
Exploits2References2
OSV
OSV
added 2021/06/09 2:15 a.m.3 views

DEBIAN-CVE-2021-28169

For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to /concat?/%2557EB-INF/web.xml can retrieve the web.xml file. This can reveal...

5.3CVSS6.4AI score0.7848EPSS
Exploits2References1
OSV
OSV
added 2021/06/09 2:15 a.m.4 views

UBUNTU-CVE-2021-28169

For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to /concat?/%2557EB-INF/web.xml can retrieve the web.xml file. This can reveal...

5.3CVSS6.7AI score0.7848EPSS
Exploits2References3
Rows per page
Query Builder