Description The URL parameters accepted by forum search were not limited to the allowed parameters. Remediation References CVE-2024-25979 Related Vulnerabilities Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20444) WordPress Plugin StoryChief Cross-Site Scripting (1.0.30) Apache Traffic Server CVE-2014-3525 Vulnerability (CVE-2014-3525) Oracle JRE CVE-2013-0426 Vulnerability (CVE-2013-0426) Jboss EAP Improper Privilege Management Vulnerability (CVE-2019-14838) Severity Medium Classification CVE-2024-25979 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities