Moderate severityNVD Advisory· Published Jun 2, 2006· Updated Apr 16, 2026
CVE-2006-2759
CVE-2006-2759
Description
jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.mortbay.jetty:jettyMaven | < 6.0.0 | 6.0.0 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- securitytracker.com/idnvdExploit
- github.com/advisories/GHSA-mq4x-8whh-jx73ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2006-2759ghsaADVISORY
- www.eclipse.org/jetty/about.phpghsaWEB
News mentions
0No linked articles in our index yet.