Description
Payara through 5.2022.2 allows directory traversal without authentication. This affects Payara Server, Payara Micro, and Payara Server Embedded.
Remediation
References
Related Vulnerabilities
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.39)
WordPress Plugin WooSidebars Cross-Site Scripting (1.4.1)
WordPress Plugin GS Portfolio for Envato Cross-Site Scripting (1.3.8)
WordPress Plugin Disqus Comment System Multiple Cross-Site Request Forgery Vulnerabilities (2.77)
WordPress Plugin YITH WooCommerce Request A Quote Security Bypass (1.4.7)