Description
Apache Axis2 installation includes a JSP page accessible at axis2-web/HappyAxis.jsp that discloses a lot of sensitive information. An attacker could use this information to conduct further attacks.
Remediation
If you don't want this information to be publicly accessible you need to restrict access to the /axis2-web/ directory.
References
Related Vulnerabilities
WordPress Plugin Email Subscribers & Newsletters Multiple Vulnerabilities (4.2.2)
Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.4)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-10545)
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-46158)