A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an attacker to obtain registered users' details.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: apache
Published:
Updated: 2024-08-04T17:44:15.389Z
Reserved: 2018-11-14T00:00:00
Link: CVE-2019-0225

No data.

Status : Modified
Published: 2019-03-28T22:29:00.683
Modified: 2024-11-21T04:16:32.130
Link: CVE-2019-0225

No data.

No data.