Description

Cross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet.

Remediation

References

CVE-2002-0682

Related Vulnerabilities

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3440)

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.1)

Dolibarr Improper Authentication Vulnerability (CVE-2021-25956)

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-4024)

WordPress Plugin Catch IDs Security Bypass (2.3)

Severity

High

Classification

CVE-2002-0682

Tags

Missing Update Known Vulnerabilities