Description
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
Remediation
References
Related Vulnerabilities
WordPress 2.8.4 Denial of Service Vulnerability (0.6.2 - 2.8.4)
WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder SQL Injection (1.29.2)
WordPress 2.1.1 Cross-Site Scripting Vulnerability (2.1.1)
Magento Cryptographic Issues Vulnerability (CVE-2019-7860)
Oracle Application Server CVE-2007-0280 Vulnerability (CVE-2007-0280)