Description
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
Remediation
References
Related Vulnerabilities
WordPress Plugin SS Quiz Multiple Unspecified Vulnerabilities (1.12)
WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (2.6.7)
WordPress Plugin Cooked Pro Cross-Site Scripting (1.7.5.5)
MySQL Other Vulnerability (CVE-2012-5383)
WordPress Plugin Click to Call or Chat Buttons Cross-Site Scripting (1.4.0)