PublicDate: 2008-03-10 17:44:00 UTC
Candidate: CVE-2008-1231
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1231
Description:
 Directory traversal vulnerability in Edit.jsp in JSPWiki 2.4.104 and
 2.5.139 allows remote attackers to include and execute arbitrary local .jsp
 files, and obtain sensitive information, via a .. (dot dot) in the editor
 parameter.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_jspwiki:
upstream_jspwiki: released (2.8.0)
dapper_jspwiki: ignored (reached end-of-life)
edgy_jspwiki: needed (reached end-of-life)
feisty_jspwiki: needed (reached end-of-life)
gutsy_jspwiki: needed (reached end-of-life)
hardy_jspwiki: ignored (reached end-of-life)
intrepid_jspwiki: needed (reached end-of-life)
jaunty_jspwiki: not-affected (2.8.0-3)
karmic_jspwiki: not-affected
lucid_jspwiki: not-affected
maverick_jspwiki: not-affected
natty_jspwiki: not-affected
oneiric_jspwiki: not-affected
devel_jspwiki: not-affected