Apache Tomcat Directory Traversal

Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.

References

Published by the National Vulnerability Database Mar 22, 2002

Published to the GitHub Advisory Database Apr 30, 2022

Reviewed Sep 18, 2023

Last updated Sep 18, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Package

Affected versions

Patched versions

Description

References

Severity

EPSS score

Weaknesses

CVE ID

GHSA ID

Source code