Description
The default servlet (org.apache.catalina.servlets.DefaultServlet) in Tomcat 4.0.4 and 4.1.10 and earlier allows remote attackers to read source code for server files via a direct request to the servlet.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14656 Vulnerability (CVE-2020-14656)
Squid Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9749)
WordPress Plugin Maps Widget for Google Maps-Google Maps Builder Security Bypass (4.16)
WordPress Plugin Simple Fields Local File Inclusion (0.3.5)
WordPress Plugin Exquisite PayPal Donation Cross-Site Scripting (2.0.0)