Description

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.

Remediation

References

CVE-2013-4112

Related Vulnerabilities

WordPress Plugin Social Media Widget Serving Spam (4.0)

Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9)

WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.0)

MySQL CVE-2017-3638 Vulnerability (CVE-2017-3638)

SharePoint CVE-2021-40484 Vulnerability (CVE-2021-40484)

Severity

Medium

Classification

CVE-2013-4112 CWE-200

Tags

Missing Update Known Vulnerabilities