CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Eclipse: >> Mojarra >> 2.1.22 Security Vulnerabilities

CVE-2020-6950

Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter.

CVSS Score

6.5

EPSS Score

0.579

Published

2021-06-02

CVE-2018-14371

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications.

CVSS Score

7.5

EPSS Score

0.026

Published

2018-07-18

Page 1

Vulnerabilities

Vulnerable Software

Eclipse: >> Mojarra >> 2.1.22 Security Vulnerabilities

Products

Pricing

Contact Us