Description
JBoss AS 7 prior to 7.1.1 and mod_cluster do not handle default hostname in the same way, which can cause the excluded-contexts list to be mismatched and the root context to be exposed.
Remediation
References
Related Vulnerabilities
MySQL CVE-2024-21055 Vulnerability (CVE-2024-21055)
WordPress Plugin A Page Flip Book 'pageflipbook_language' Parameter Local File Include (2.3)
Oracle JRE CVE-2023-21930 Vulnerability (CVE-2023-21930)
PostgreSQL Other Vulnerability (CVE-2006-2314)
WordPress 4.4.x Cross-Site Scripting Vulnerability (4.4 - 4.4.2)