Description

Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. HTTP/1.0).

Remediation

References

CVE-2001-0590

Related Vulnerabilities

WordPress Plugin BuddyPress Cross-Site Scripting (2.2.2.1)

WordPress Plugin WordPress Related Posts Cross-Site Request Forgery (2.6.1)

Undertow Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-3888)

WordPress Plugin Quick Contact Form Multiple Vulnerabilities (8.0.3.1)

WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-14723)

Severity

Medium

Classification

CVE-2001-0590

Tags

Missing Update Known Vulnerabilities