Improper Authentication in Apache Tomcat

Apache Tomcat XSS Vulnerabilities in Examples Web Application

Apache Tomcat Unrestricted file upload vulnerability

Apache Tomcat HTTP BIO Connector Error Discloses Information From Different Requests to Remote Users

Apache Tomcat Directory Traversal vulnerability

Apache Tomcat Incomplete Cleanup vulnerability

Apache Tomcat Example Application CSRF and XSS Vulnerabilities

Apache Tomcat allows remote attackers to read data that was intended to be associated with a different request

Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat

Apache Tomcat Rewrite rule bypass

Apache Tomcat Improper Input Validation vulnerability

Apache Tomcat Cross-site scripting (XSS) vulnerability

Apache Tomcat - XSS in generated JSPs

Apache Tomcat vulnerable to Generation of Error Message Containing Sensitive Information

The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensitive system information such as directory listings and web root path, via erroneous HTTP requests for Java Server Pages (JSP) in the (1) test/jsp, (2) samples/jsp and (3) examples/jsp directories, or the (4) test/realPath.jsp servlet, which leaks pathnames in error messages.

Tomcat Vulnerable to Web Cache Poisoning

Apache Tomcat does not properly handle an invalid Transfer-Encoding header

Exposure of Sensitive Information in Apache Tomcat

org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager application's functionality.

Tomcat uses trusted privileges when processing web.xml file