Caucho Resin 1.3b1 and earlier allows remote attackers to read source code for Javabean files by inserting a .jsp before the WEB-INF specifier in an HTTP request.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Resin | Caucho_technology | 1.2 | 1.2 |
Resin | Caucho_technology | 1.3 | 1.3 |