Description
Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to delete work-directory files via directory traversal sequences in a WAR filename, as demonstrated by the ...war filename.
Remediation
References
Related Vulnerabilities
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433)
WordPress Plugin Request a Quote Cross-Site Scripting (2.0.0)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092)
Python Out-of-bounds Read Vulnerability (CVE-2019-15903)
WordPress Plugin WordPress Sentinel Multiple Vulnerabilities (1.0.0)