Apache Archiva vulnerable to Sensitive Information Disclosure via anonymous user