Description
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.
Remediation
References
Related Vulnerabilities
WordPress Plugin dsIDXpress IDX Multiple Unspecified Vulnerabilities (2.1.32)
Oracle Database Server CVE-2015-4900 Vulnerability (CVE-2015-4900)
Oracle JRE CVE-2020-2590 Vulnerability (CVE-2020-2590)
jQuery Validation Other Vulnerability (CVE-2021-43306)
WordPress Plugin 404page-your smart custom 404 error page Cross-Site Request Forgery (10.3)