Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Servlet Engine and Web Container in IBM WebSphere Application Server (WAS) before 6.0.2.17, when ibm-web-ext.xmi sets fileServingEnabled to true and servlet caching is enabled, allows remote attackers to obtain JSP source code and other sensitive information via "specific requests."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM WebSphere应用服务器源码泄露漏洞
Vulnerability Description
IBM Websphere应用服务器以Java和Servlet引擎为基础,支持多种HTTP服务,可帮助用户完成从开发、发布到维护交互式的动态网站的所有工作。 Websphere应用服务器在特定配置情况下处理用户请求存在问题,远程攻击者可能利用此漏洞获取JSP源码。 如果WebSphere应用服务器被配置为以下情况之一的话: 1 从Application WAR生成JSP;ibm.web.ext.xm文件中fileServingEnabled设置为true,可以访问war目录下的JSP文件 2 从Exten
CVSS Information
N/A
Vulnerability Type
N/A