Description
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.17, when the MemoryUserDatabase is used, creates log entries containing passwords upon encountering errors in JMX user creation, which allows local users to obtain sensitive information by reading a log file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Zedity:The Easiest Way To Create Posts & Pages Cross-Site Scripting (2.5.0)
GlassFish CVE-2016-5519 Vulnerability (CVE-2016-5519)
Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.15)
WordPress Plugin Page Showcaser Boxes Cross-Site Scripting (1.1)
e107 Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2020)