Description
Caucho Technology Resin 2.1.12 allows remote attackers to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.
Remediation
References
Related Vulnerabilities
GlassFish CVE-2012-0550 Vulnerability (CVE-2012-0550)
MySQL CVE-2023-21881 Vulnerability (CVE-2023-21881)
OpenSSL Improper Input Validation Vulnerability (CVE-2009-3245)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20401)
Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7187)