https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
muthukumar <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|INVALID |--- --- Comment #2 from muthukumar <[email protected]> --- I used RequestDispatcher in my app and the param for RequestDispatcher is coming from url parameter . If an attacker changes this parameter value to "/WEB-INF/web.xml" he can access my secret files . Do you proper solution??? -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
