Path Traversal Vulnerability in Wildfly 9.x Allows Information Disclosure

Path Traversal Vulnerability in Wildfly 9.x Allows Information Disclosure

CVE-2018-1047 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.

Learn more about our Web Application Penetration Testing UK.