Description
IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).
Remediation
References
Related Vulnerabilities
WordPress 4.5.x PHP Object Injection (4.5 - 4.5.23)
PostgreSQL Improper Access Control Vulnerability (CVE-2019-10127)
WordPress Plugin Visitor Maps and Who's Online Cross-Site Scripting (1.5.8.6)
Oracle Database Server CVE-2009-1971 Vulnerability (CVE-2009-1971)
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-15730)