Description
Apache Tomcat 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 might allow remote attackers to discover the server's hostname or IP address by sending a request for a resource that requires (1) BASIC or (2) DIGEST authentication, and then reading the realm field in the WWW-Authenticate header in the reply.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2007-2110 Vulnerability (CVE-2007-2110)
XWikiplatform Improper Encoding or Escaping of Output Vulnerability (CVE-2024-55663)
WordPress Plugin Banner Slider Cross-Site Scripting (1.0)
WordPress Plugin JobSearch WP Job Board Cross-Site Scripting (1.5.2)
Microsoft SQL Server CVE-2023-21528 Vulnerability (CVE-2023-21528)