类型: 安全缺陷

    系统数据或调试信息通过网络流向远程机器时,发生外部信息泄露。

    1. protected void doGet(HttpServletRequest req, HttpServletResponse res) throws IOException {
    2.     PrintWriter out = res.getWriter();
    3.     try {
    4.         //...
    5.     } catch (Exception e) {
    6.         out.println(e.getMessage());
    7.     }
    8. }