Description
The PooledInvokerServlet in JBoss EAP 4.x and 5.x allows remote attackers to execute arbitrary code via a crafted serialized payload.
Remediation
References
Related Vulnerabilities
Moodle Improper Access Control Vulnerability (CVE-2016-8643)
WordPress Plugin Social Slider Widget Cross-Site Scripting (1.8.4)
WordPress Plugin YITH WooCommerce Brands Add-On Security Bypass (1.3.6)
MySQL CVE-2021-35602 Vulnerability (CVE-2021-35602)
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19595)