marcsaeg01/06/14 08:26:09
Modified:src/examples/WEB-INF/classes/examples ShowSource.java
Log:
Porting ShowSource.java from 3.2.x. This contains the code that prevents
the ShowSource servlet from displaying contents of files in WEB-INF and META-INF
directories.
PR: 372
Subm
marcsaeg01/06/14 08:23:47
Modified:src/examples/WEB-INF/classes/examples Tag: tomcat_32
ShowSource.java
Log:
The code that attempted to prevent exposing the contents of files in the WEB-INF and
META-INF directories was broken and actually prevented source fi
craigmcc00/12/09 19:07:51
Modified:src/examples/WEB-INF/classes/examples Tag: tomcat_32
ShowSource.java
Log:
Fix a security vulnerability -- the "ShowSource" custom tag in conjunction
with the "/examples/jsp/source.jsp page could be used to expose the conte
