Description
The Snoop Servlet returns information about the HTTP request itself and sometimes. It could help an attacker to prepare more advanced attacks
Remediation
Remove the Snoop Servlet from production systems or restrict access to it.
References
Related Vulnerabilities
WordPress Plugin Download Zip Attachments Arbitrary File Download (1.0.0)
WordPress Plugin WP Import Export Lite Information Disclosure (3.9.15)
Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.3)
Atlassian Confluence information disclosure
WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)