CVE-2020-1938: Ghostcat – Apache Tomcat AJP File Read/Inclusion Vulnerability | Dark Hacker News

Dark Hacker News

new|best|ask|show|jobs

Built with the HackerNews API. Developed by LJT.AI

Note: The HackerNews API provides up to 500 stories per category

CVE-2020-1938: Ghostcat – Apache Tomcat AJP File Read/Inclusion Vulnerability(tenable.com)

1 points by zspitzer 6 years ago | 1 comment

CVE-2020-1938: Ghostcat – Apache Tomcat AJP File Read/Inclusion Vulnerability | Dark Hacker News

zspitzer 6 years ago |

Alas, Apache Httpd's mod_proxy_ajp still doesn't support secrets

https://bz.apache.org/bugzilla/show_bug.cgi?id=53098