VYPR
Moderate severityNVD Advisory· Published Jan 8, 2008· Updated Jun 16, 2026

CVE-2007-6672

CVE-2007-6672

Description

Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass protection mechanisms and read the source of files via multiple '/' (slash) characters in the URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.mortbay.jetty:jettyMaven
>= 6.1.5, < 6.1.76.1.7

Affected products

3
  • Eclipse/Jetty2 versions
    cpe:2.3:a:mortbay_jetty:jetty:6.1.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mortbay_jetty:jetty:6.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mortbay_jetty:jetty:6.1.6:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 6.1.5, < 6.1.7

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.