Source Code Disclosure in IBM WCS 4.0.1 with Application Server 3.0.2

Source Code Disclosure in IBM WCS 4.0.1 with Application Server 3.0.2

CVE-2001-0446 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL.

Learn more about our Cis Benchmark Audit For Ibm Websphere.