Description
An information disclosure issue was discovered in Apache Tomcat 8.5.7 to 8.5.9 and 9.0.0.M11 to 9.0.0.M15 in reverse-proxy configurations. Http11InputBuffer.java allows remote attackers to read data that was intended to be associated with a different request.
Remediation
References
Related Vulnerabilities
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)
PHP Other Vulnerability (CVE-2007-1379)
WordPress Plugin Per page add to head Cross-Site Scripting (1.4.4)
Nginx Improper Input Validation Vulnerability (CVE-2011-4968)
WordPress Direct Request ('Forced Browsing') Vulnerability (CVE-2005-1688)