Description

Cross-site scripting (XSS) vulnerability in implicit-objects.jsp in Apache Tomcat 5.0.0 through 5.0.30 and 5.5.0 through 5.5.17 allows remote attackers to inject arbitrary web script or HTML via certain header values.

Remediation

References

CVE-2006-7195

Related Vulnerabilities

PHP Other Vulnerability (CVE-2007-1401)

MediaWiki Other Vulnerability (CVE-2006-2895)

WordPress Plugin Form Vibes-Database Manager for Forms Unspecified Vulnerability (1.4.2)

MySQL CVE-2013-3807 Vulnerability (CVE-2013-3807)

WordPress Plugin Video Comments Webcam Recorder Cross-Site Scripting (1.55)

Severity

Medium

Classification

CVE-2006-7195

Tags

Missing Update Known Vulnerabilities