Search 202850 CVE descriptions
and 87302 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:CGI abuses
Title:BEA WebLogic Scripts Server scripts Source Disclosure (3)

BEA WebLogic may be tricked into revealing the source code of JSP scripts
by prefixing the path to the .jsp files by /*.shtml/

Solution: Use the official patch available at
or upgrade to a version newer than 5.1

Risk factor : Medium

Cross-Ref: BugTraq ID: 1517
Common Vulnerability Exposure (CVE) ID: CVE-2000-0683
Bugtraq: 20000728 BEA's WebLogic force handlers show code vulnerability (Google Search)
CopyrightThis script is (C) 2003 Renaud Deraison

This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.