A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an malicious user to obtain registered users' details.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache jspwiki 2.11.0 |
||
apache jspwiki |