Description
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
Remediation
References
Related Vulnerabilities
e107 Other Vulnerability (CVE-2006-2591)
WordPress Plugin TheCartPress eCommerce Shopping Cart Multiple Vulnerabilities (1.3.9)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49)
MySQL CVE-2020-2660 Vulnerability (CVE-2020-2660)
WebLogic Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5397)