Description
An information disclosure issue was discovered in Apache Tomcat 8.5.7 to 8.5.9 and 9.0.0.M11 to 9.0.0.M15 in reverse-proxy configurations. Http11InputBuffer.java allows remote attackers to read data that was intended to be associated with a different request.
Remediation
References
Related Vulnerabilities
WordPress Plugin Formidable-Clockwork SMS Cross-Site Scripting (1.0.3)
WordPress Plugin WP Add Mime Types Cross-Site Request Forgery (2.2.1)
MySQL Other Vulnerability (CVE-2001-1454)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-6816)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6634)