BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.
Affected Software
Name |
Vendor |
Start Version |
End Version |
One-to-one_enterprise_server |
Broadvision |
1.0 (including) |
1.0 (including) |
References