Description
Payara before 2022-11-04, when deployed to the root context, allows attackers to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422. This affects Payara Platform Community before 4.1.2.191.38, 5.x before 5.2022.4, and 6.x before 6.2022.1, and Payara Platform Enterprise before 5.45.0.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Analytics Dashboard Multiple Unspecified Vulnerabilities (2.0.5)
Python Improper Input Validation Vulnerability (CVE-2013-4238)
PHP error logging format string vulnerability
WordPress 4.2.x Prototype Pollution (4.2 - 4.2.31)
WordPress Plugin Import and export users and customers Cross-Site Request Forgery (1.14.1.3)