Unrated severityNVD Advisory· Published Nov 28, 2001· Updated Jun 16, 2026

CVE-2001-0926

Description

SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the request's body has an #include statement.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Macromedia/Jrun4 versions
cpe:2.3:a:macromedia:jrun:2.3.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:macromedia:jrun:2.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:jrun:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:macromedia:jrun:3.1:*:*:*:*:*:*:*
- (no CPE)range: <=3.1

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.macromedia.com/v1/handlers/index.cfmnvdPatchVendor Advisory
www.securityfocus.com/bid/3589nvdPatchVendor Advisory
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/7622nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000