play_2.12 is vulnerable to information disclosure. The vulnerability exists due to the improper configuration use in DefaultHttpErrorHandler
, allowing an attacker to gain access to sensitive information through the error message in stack trace by providing some invalid values.