Description

Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1 allows remote attackers to execute arbitrary web script and steal cookies via a URL with encoded newlines followed by a request to a .jsp file whose name contains the script.

Remediation

References

CVE-2002-1567

Related Vulnerabilities

WordPress 6.0.x Multiple Vulnerabilities (6.0 - 6.0.3)

WordPress Plugin Shortcode Factory Local File Inclusion (2.7)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-4382)

Apache Tomcat Improper Input Validation Vulnerability (CVE-2011-2526)

WordPress Plugin IGIT Posts Slider Widget 'src' Parameter Cross-Site Scripting (1.0)

Severity

Medium

Classification

CVE-2002-1567

Tags

Missing Update Known Vulnerabilities