Description
Your web application uses Jetty's utility servlet - ConcatServlet. Due to the vulnerability in it, an attacker can access protected resources of the web application.
Remediation
Upgrade to the latest version of Jetty
References
Related Vulnerabilities
WordPress Plugin IBS Mappro Arbitrary File Download (0.6)
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.8)
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-12528)
[Possible] Password Transmitted over Query String
WordPress Plugin Wholesale Market Arbitrary File Download (2.2.0)