Description Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers. Remediation References CVE-2016-6311 Related Vulnerabilities Magento Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2019-8113) WordPress Plugin SendPress Newsletters Cross-Site Scripting (1.20.7.10) WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7) Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33323) Jboss EAP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-14900) Severity Medium Classification CVE-2016-6311 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Tags Missing Update Known Vulnerabilities