In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade org.wildfly.security:wildfly-elytron-http-form
to version 1.11.4.Final or higher.
org.wildfly.security:wildfly-elytron-http-form is a WildFly Security HTTP Basic Mechanism Implementation
Affected versions of this package are vulnerable to Session Fixation. A variation to the use of a session fixation exploit when using Undertow was found despite Undertow switching the session ID after authentication. The highest threat from this vulnerability is to data confidentiality and integrity.