Description
A flaw was found in wildfly-core before 7.2.5.GA. The Management users with Monitor, Auditor and Deployer Roles should not be allowed to modify the runtime state of the server
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21362 Vulnerability (CVE-2022-21362)
Click to Chat Cross-Site Scripting (1.6)
Acunetix WP Security Cross-Site Request Forgery (4.0.4)
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2922)
Oracle HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2022-25235)