VYPR

Maven package

org.jboss.mod_cluster/mod_cluster

pkg:maven/org.jboss.mod_cluster/mod_cluster

Vulnerabilities (1)

  • CVE-2012-1154Oct 22, 2012
    affected >= 1.1.0, < 1.1.4fixed 1.1.4

    mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, which allows remote attackers to bypass access restrictions and gain access to app