Description
Directory traversal vulnerability in JBoss Undertow 1.0.x before 1.0.17, 1.1.x before 1.1.0.CR5, and 1.2.x before 1.2.0.Beta3, when running on Windows, allows remote attackers to read arbitrary files via a .. (dot dot) in a resource URI.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2008-0345 Vulnerability (CVE-2008-0345)
WordPress Plugin MainWP Child Reports SQL Injection (2.0.7)
RubyGems Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000075)
WordPress Plugin Relevant-Related Posts by BestWebSoft Cross-Site Scripting (1.0.7)
WordPress Plugin Social Count Plus Cross-Site Scripting (3.0.2)