Уязвимость CVE-2007-2449

Пакет	Статус	Версия исправления	Тип
tomcat4	removed		package
tomcat5	removed		package
tomcat5.5	fixed	5.5.25-1	package

CVE-2007-2449

ubuntu

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

CVE-2007-2449

redhat

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

CVE-2007-2449

nvd

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

GHSA-hc39-rjwp-qffq

github

около 3 лет назад

Apache Tomcat XSS Vulnerabilities in Examples Web Application

ELSA-2007-0569

oracle-oval

почти 18 лет назад

ELSA-2007-0569: Moderate: tomcat security update (MODERATE)

exploitDog

CVE-2007-2449

Описание

Пакеты

Примечания

Связанные уязвимости