CVE-2016-0793

HIGH

WildFly <10.0.0.Final - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2016-0793. PoCs published by Tal Solomon of Palantir Security, tafamace.

AI-analyzed exploit summary This exploit describes an information disclosure vulnerability in Wildfly where restricted files in WEB-INF and META-INF directories can be accessed by bypassing filter restrictions using lowercase paths and meaningless characters. The vulnerability affects versions prior to 10.0.0.Final.

Description

Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly JBoss Application Server) before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the (1) WEB-INF or (2) META-INF directory via a request that contains (a) lowercase or (b) "meaningless" characters.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Tal Solomon of Palantir Security · textwebappswindows

https://www.exploit-db.com/exploits/39573

View Code ZIP pw:eip

This exploit describes an information disclosure vulnerability in Wildfly where restricted files in WEB-INF and META-INF directories can be accessed by bypassing filter restrictions using lowercase paths and meaningless characters. The vulnerability affects versions prior to 10.0.0.Final.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Wildfly versions prior to 10.0.0.Final

No auth needed

Prerequisites: Access to the target Wildfly server

MITRE ATT&CK

T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec STUB

by tafamace · poc

https://github.com/tafamace/CVE-2016-0793

View Code ZIP pw:eip

The repository contains a minimal Java project with a generic Main.java file that does not demonstrate any exploit functionality related to CVE-2016-0793. The Travis CI configuration suggests it was part of a build pipeline but lacks any exploit-specific code.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Unknown (no exploit code present)

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory x_refsource_confirm

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03784en_us

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/136323/Wildfly-Filter-Restriction-Bypass-Information-Disclosure.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/39573/

Vendor Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=1305937

Vendor Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20180215-0001/

Scores

CVSS v3 7.5

EPSS 0.3000

EPSS Percentile 96.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-200

Status published

Products (3)

org.wildfly/wildfly-parent 0 - 10.0.0.FinalMaven

org.wildfly/wildfly-undertow 0 - 10.0.0.FinalMaven

redhat/jboss_wildfly_application_server 10.0.0

Published Apr 01, 2016

Tracked Since Feb 18, 2026