Description
Caucho Technology Resin 2.1.12 allows remote attackers to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.
Remediation
References
Related Vulnerabilities
WordPress Plugin Login or Logout Menu Item Security Bypass (1.1.1)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3557)
PHP Improper Input Validation Vulnerability (CVE-2015-3411)
WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.8.4)
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4097)