Tomcat program: Tomcat3.1 description: Tomcat3.1 exposes the website Path. Details: Tomcat3.1 is a software developed in the Apache software environment that supports JSP1.1 and Servlets2.2. It has a security problem. when a non-existent jsp request is sent, the full path of the webpage on the website will be exposed: Example: narco. guerrilla. sucks. Tomcat
Involved procedures:
Tomcat 3.1
Description:
Tomcat 3.1 exposed website Path Problems
Details:
Tomcat 3.1 is a software developed in the Apache software environment that supports JSP 1.1 and Servlets 2.2. It has a security problem. when a non-existent jsp request is sent, the full path of the webpage is exposed:
Example:
Http://narco.guerrilla.sucks.co: 8080/anything. jsp
Result:
Error: 404
Location:/anything. jsp
JSP file "/javasrv2/jakarta-tomcat/webapps/ROOT/anything. jsp" not found
Solution:
Upgrade to the latest version.