Description
A flaw was found in Infinispan's REST, Cache retrieval endpoints do not properly evaluate the necessary admin permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions.
Remediation
References
Related Vulnerabilities
WordPress Plugin YaMaps for WordPress Cross-Site Scripting (0.6.25)
IBMHttpServer Other Vulnerability (CVE-2006-3918)
WordPress 2.9.1 Trashed Posts Security Bypass Vulnerability (2.9 - 2.9.1)
WordPress Other Vulnerability (CVE-2007-1244)
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1999019)