Vulnerabilities > Eclipse > Mojarra > 1.2.20

DATE CVE VULNERABILITY TITLE RISK
2021-06-02 CVE-2020-6950 Path Traversal vulnerability in multiple products
Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter. 		4.3
4.3
2018-07-18 CVE-2018-14371 Path Traversal vulnerability in Eclipse Mojarra
The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter.
network
low complexity
eclipse CWE-22
5.0
5.0