Description

There is a Directory traversal vulnerability in Caucho Resin, as distributed in Resin 4.0.52 - 4.0.56, which allows remote attackers to read files in arbitrary directories via a ; in a pathname within an HTTP request.

Remediation

References

CVE-2021-44138

Related Vulnerabilities

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-46147)

WebLogic CVE-2018-1257 Vulnerability (CVE-2018-1257)

WordPress Plugin WP w3all phpBB Multiple Unspecified Vulnerabilities (1.6.3)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1655)

WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Cross-Site Scripting (2.2.4)

Severity

High

Classification

CVE-2021-44138 CWE-22

Tags

Missing Update Known Vulnerabilities