WEB APPLICATION VULNERABILITIES Standard & Premium

Apache Tomcat Other Vulnerability (CVE-2007-1355)

Description

Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remote attackers to inject arbitrary web script or HTML via the test parameter and unspecified vectors.

Remediation

References

Related Vulnerabilities

WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.2.1)

PHP version older than 5.2.6

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-21683)

WordPress Plugin Smart Forms-Calculated Fields, Form Builder, Easy To Use Cross-Site Scripting (2.6.15)

WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.0.0)

Severity

Medium

Classification

Tags

Missing Update Known Vulnerabilities