CVE-2024-38524
GeoServer/GeoWebCacheDispatcher.handleFrontPage has no check to hide sensitive information, exposing storage locations, config file paths, and temporarily server-start-time via the GeoWebCache home page. Affected component is org.geowebcache.GeoWebCacheDispatcher.handleFrontPage(HttpServletReques...