Sonicwall Signatures
Go to
All Categories
list.
Eclipse Jetty ConcatServlet Double Decoding Information Disclosure
Category:
WEB-ATTACKS
For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory.
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0