Description
A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system.
Remediation
References
Related Vulnerabilities
Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.6)
WordPress Plugin WP Forum Server Multiple SQL Injection (1.6.5)
Oracle JRE CVE-2013-2458 Vulnerability (CVE-2013-2458)
WebLogic CVE-2022-21252 Vulnerability (CVE-2022-21252)
WordPress Plugin WooCommerce-Store Exporter CSV Injection (2.3.1)