GHSA-q388-j7cw-ff7w
Suggest an improvement- Source
- https://github.com/advisories/GHSA-q388-j7cw-ff7w
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-q388-j7cw-ff7w/GHSA-q388-j7cw-ff7w.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-q388-j7cw-ff7w
- Aliases
-
- CVE-2013-3827
- Published
- 2022-05-17T03:13:10Z
- Modified
- 2024-12-04T05:39:38.670856Z
- Summary
- Path Traversal in Eclipse Mojarra
- Details
-
Multiple path traversal flaws where found in Mojarra JSF2 implementation for identifying resources by name or from libraries. An unauthenticated remote attacker can use these flaws to gather otherwise undisclosed information from within an application's root.
- Database specific
{ "nvd_published_at": "2013-10-16T15:55:00Z", "cwe_ids": [ "CWE-22" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2022-11-03T22:33:13Z" }- References
Affected packages
Maven / org.glassfish:javax.faces
Package
- Name
- org.glassfish:javax.faces
- View open source insights on deps.dev
- Purl
- pkg:maven/org.glassfish/javax.faces
Affected versions
2.*
2.0.7
2.0.8
2.0.9
2.0.9-02
2.0.9-05
2.0.9-08
2.0.10
2.0.11
2.0.11-01
2.0.11-02
2.0.11-03
2.1.2
2.1.3
2.1.4
2.1.5
2.1.5-02
2.1.5-04
2.1.6
2.1.7
2.1.7-01
2.1.7-02
2.1.7-03
2.1.7-04
2.1.7-05
2.1.7-06
2.1.7-07
2.1.7-08
2.1.7-09
2.1.7-10
2.1.8
2.1.9
2.1.10
2.1.11
2.1.12
2.1.13
2.1.14
2.1.15
2.1.16
2.1.17
2.1.18