Description
undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api.
Remediation
References
Related Vulnerabilities
WordPress Plugin WooCommerce Security Bypass (4.6.1)
WordPress Plugin WPFront User Role Editor Multiple Cross-Site Scripting Vulnerabilities (2.13)
Drupal Other Vulnerability (CVE-2006-2832)
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-1489)
WordPress Plugin Nextend Facebook Connect Unspecified Vulnerability (1.5.7)