Exploitation Summary
EIP tracks 1 public exploit for CVE-2006-2437. PoCs published by Joseph Pierini.
AI-analyzed exploit summary The provided text describes an information disclosure vulnerability in Resin due to improper input sanitization, allowing attackers to retrieve arbitrary files. It includes example URLs demonstrating the exploit but lacks executable code.
Description
The viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to obtain the source code for file under the web root via the file parameter.
Exploits (1)
The provided text describes an information disclosure vulnerability in Resin due to improper input sanitization, allowing attackers to retrieve arbitrary files. It includes example URLs demonstrating the exploit but lacks executable code.