CVE-2000-1224 in Resin信息

摘要

由 VulDB • 2026-06-19

Caucho Technology Resin 1.2 及可能更早的版本允许远程攻击者通过在文件名后附加特定字符(如 (1) ".."、(2) "%2e.."、(3) "%81"、(4) "%82" 等)并向 .jsp 文件发送 HTTP 请求,来查看 JSP 源代码。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Do you need the next level of professionalism?

Upgrade your account now!