trunk: docs xdocs

markt Mon, 18 May 2026 02:31:33 -0700

Author: markt
Date: Mon May 18 09:31:15 2026
New Revision: 1934337

Log:
Add SSI to the non-findings list


Modified:
   tomcat/site/trunk/docs/security-model.html
   tomcat/site/trunk/xdocs/security-model.xml

Modified: tomcat/site/trunk/docs/security-model.html
==============================================================================
--- tomcat/site/trunk/docs/security-model.html  Mon May 18 09:17:40 2026        
(r1934336)
+++ tomcat/site/trunk/docs/security-model.html  Mon May 18 09:31:15 2026        
(r1934337)
@@ -113,6 +113,8 @@
 
       <li>Any report that depends on write access to an application's 
           <code>docBase</code>.</li>
+
+      <li>Any report that depends on attacker controlled SSI directives.</li>
     </ol>
   </div></div></div></div></main><footer id="footer">
     Copyright &copy; 1999-2026, The Apache Software Foundation

Modified: tomcat/site/trunk/xdocs/security-model.xml
==============================================================================
--- tomcat/site/trunk/xdocs/security-model.xml  Mon May 18 09:17:40 2026        
(r1934336)
+++ tomcat/site/trunk/xdocs/security-model.xml  Mon May 18 09:31:15 2026        
(r1934337)
@@ -123,6 +123,8 @@
 
       <li>Any report that depends on write access to an application's 
           <code>docBase</code>.</li>
+
+      <li>Any report that depends on attacker controlled SSI directives.</li>
     </ol>
   </section>
 


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

svn commit: r1934337 - in tomcat/site/trunk: docs xdocs

Reply via email to