Description
A flaw was found in wildfly-core before 7.2.5.GA. The Management users with Monitor, Auditor and Deployer Roles should not be allowed to modify the runtime state of the server
Remediation
References
Related Vulnerabilities
Drupal Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2020-36193)
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-16780)
Oracle Application Server Other Vulnerability (CVE-2005-1383)
Varnish Cache Other Vulnerability (CVE-2015-8852)
Apache Traffic Server Out-of-bounds Write Vulnerability (CVE-2021-35474)