BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote malicious users to bypass access controls for restricted JSP or servlet pages via a URL with multiple / (forward slash) characters before the restricted pages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bea weblogic server 5.1 |