CVE-2012-2181 - Jetting Clubs

Description

Directory traversal vulnerability in the Dojo module in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF14 and 8.0 allows remote attackers to read arbitrary files via a crafted URL.

Reference

http://www.ibm.com/support/docview.wss?uid=swg21598363 http://www.ibm.com/support/docview.wss?uid=swg1PM64172 https://exchange.xforce.ibmcloud.com/vulnerabilities/75584