Vulnerabilities > Caucho Technology > Resin > 3.0.17
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-05-17 | CVE-2006-2438 | Information Disclosure vulnerability in Caucho Technology Resin 3.0.17/3.0.18 Directory traversal vulnerability in the viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to read arbitrary files under other web roots via the contextpath parameter. | 5.0 |
2006-05-17 | CVE-2006-2437 | Information Disclosure vulnerability in Caucho Technology Resin 3.0.17/3.0.18 The viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to obtain the source code for file under the web root via the file parameter. | 5.0 |
2006-05-17 | CVE-2006-1953 | Remote Directory Traversal vulnerability in Caucho Technology Resin 3.0.17/3.0.18 Directory traversal vulnerability in Caucho Resin 3.0.17 and 3.0.18 for Windows allows remote attackers to read arbitrary files via a "C:%5C" (encoded drive letter) in a URL. | 7.8 |