Description
A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this flaw to obtain the user's credentials from the log files.
Remediation
References
Related Vulnerabilities
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.21)
WordPress Plugin Subscribe To Comments Reloaded Multiple Vulnerabilities (140204)
WordPress Plugin SEO Redirection-301 Redirect Manager Unspecified Vulnerability (8.7)
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (8.9)