Description
An information disclosure issue was discovered in Apache Tomcat 8.5.7 to 8.5.9 and 9.0.0.M11 to 9.0.0.M15 in reverse-proxy configurations. Http11InputBuffer.java allows remote attackers to read data that was intended to be associated with a different request.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Gravity Forms Zoho CRM Add-on Cross-Site Scripting (1.1.5)
WordPress Plugin YaMaps for WordPress Cross-Site Scripting (0.6.25)
WordPress Plugin QIWI payment module for Woocommerce Cross-Site Scripting (0.0.9)
OpenSSL Cryptographic Issues Vulnerability (CVE-2008-7270)
Plone CMS Improper Input Validation Vulnerability (CVE-2011-4462)