Description Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers. Remediation References CVE-2016-6311 Related Vulnerabilities PleskWin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-1557) Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4802) WordPress Plugin Improved user search in backend Cross-Site Request Forgery (1.2.4) WordPress Plugin Improved Sale Badges for WooCommerce Security Bypass (4.3.2) Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518) Severity Medium Classification CVE-2016-6311 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Tags Missing Update Known Vulnerabilities