Lucene search
Veracode Vulnerability DatabaseVERACODE:32239HistorySep 24, 2021 - 2:16 a.m.
Directory Traversal
2021-09-2402:16:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.155 Low
EPSS
Percentile
95.9%
jms-core is vulnerable to directory traversal. Lack of secure handling of paths allows an attacker to traverse into the WEB-INF folder and read files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jms module | le | 6.2.1 | |
| jms module | le | 3.2-b06 | |
| jms module | le | 6.2.3 | |
| jms module | le | 3.2-b06 |
References
packetstormsecurity.com/files/164365/Payara-Micro-Community-5.2021.6-Directory-Traversal.html
github.com/Net-hunter121/CVE-2021-41381/blob/main/CVE:%202021-41381-POC
github.com/payara/Payara/commit/08f04f80fb88a22298537870db5823d39e05d608
www.exploit-db.com/exploits/50371
www.payara.fish
www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-054.txt
Related
prion
prion
Directory traversal
2021-09-23 15:15:00
openvas
openvas
'/.//WEB-INF/' Information Disclosure Vulnerability (HTTP)
2021-10-06 00:00:00
cve
cve
CVE-2021-41381
2021-09-23 15:15:08
cvelist
cvelist
CVE-2021-41381
2021-09-23 00:00:00
nvd
nvd
CVE-2021-41381
2021-09-23 15:15:08
zdt
zdt
Payara Micro Community 5.2021.6 - Directory Traversal Vulnerability
2021-10-04 00:00:00
Payara Platform Path Traversal Vulnerability
2022-11-16 00:00:00
nuclei
nuclei
Payara Micro Community 5.2021.6 Directory Traversal
2021-09-30 06:30:48
packetstorm
packetstorm
Payara Micro Community 5.2021.6 Directory Traversal
2021-10-02 00:00:00
Payara Platform Path Traversal
2022-11-15 00:00:00
exploitdb
exploitdb
Payara Micro Community 5.2021.6 - Directory Traversal
2021-10-04 00:00:00