VYPR

Maven package

org.wso2.carbon.commons/org.wso2.carbon.logging.view.ui

pkg:maven/org.wso2.carbon.commons/org.wso2.carbon.logging.view.ui

Vulnerabilities (1)

  • CVE-2016-4314MedFeb 17, 2017
    affected <= 4.4.5

    Directory traversal vulnerability in the LogViewer Admin Service in WSO2 Carbon 4.4.5 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the logFile parameter to downloadgz-ajaxprocessor.jsp.