Description
Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0798)
Oracle JRE CVE-2012-0547 Vulnerability (CVE-2012-0547)
WordPress Plugin Flo Forms-Easy Drag & Drop Form Builder Multiple Vulnerabilities (1.0.35)
MySQL Divide By Zero Vulnerability (CVE-2019-16168)
Apache Tomcat Improperly Implemented Security Check for Standard Vulnerability (CVE-2017-15706)