National Institute of Standards and Technology
SARD home
Test Cases
Test Suites
Documentation
Test case 149009
1.0.0
Type
source code
State
bad
Author
The Eclipse Foundation
Status
candidate
Language
Java
Application
cpe:2.3:a:mortbay:jetty:6.1.16:*:*:*:*:*:*:*
Submission Date
01 Aug 2014
Description
jetty-6.1.16
Flaws
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-20
Improper Input Validation
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Test Suites
Jetty 6.1.16
Have any comments on this test case? Please,
send us an email.