Description
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.
Remediation
References
Related Vulnerabilities
Joomla! Core 3.9.x Cross-Site Request Forgery (3.9.0 - 3.9.19)
Dot CMS Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-19138)
WordPress Plugin Edit Author Slug Cross-Site Scripting (1.0.5.1)
Joomla! Core Cross-Site Scripting (1.5.0 - 3.7.3)
WordPress Plugin Custom Search by BestWebSoft Cross-Site Scripting (1.35)