Security Advisory

CVE-2001-0926

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2002-02-02 05:00:00

Last updated 2024-08-08 04:37:06

Assigner mitre

State PUBLISHED

Description

SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the requests body has an #include statement.

← Browse all CVEs View on cve.org ↗